Today CISA’s NCCIC-ICS published two control system security advisories from products from Trane and AUVESY.
Trane Advisory - This advisory
describes a cross-site scripting vulnerability in the Trane Tracer SC Building
Automation Controllers.
AUVESY Advisory - This advisory describes 17 vulnerabilities in the AUVESY versiondog data management software.
For more details about the two advisories, including to link to researcher report, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-published-10-19-21 - subscription required.
Posts
No comments:
Post a Comment