Tuesday, October 19, 2021

Review - 2 Advisories Published – 10-19-21

Today CISA’s NCCIC-ICS published two control system security advisories from products from Trane and AUVESY.

Trane Advisory - This advisory describes a cross-site scripting vulnerability in the Trane Tracer SC Building Automation Controllers.

AUVESY Advisory - This advisory describes 17 vulnerabilities in the AUVESY versiondog data management software.

For more details about the two advisories, including to link to researcher report, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-published-10-19-21 - subscription required.

No comments:

/* Use this with templates/template-twocol.html */