Thursday, November 4, 2021

Review - 3 Advisories Published – 11-4-21

Today CISA’s NCCIC-ICS published two control system security advisories for products from AzeoTech and VISAM. They also published a medical device security advisory for products from Philips.

AzeoTech Advisory - This advisory describes four vulnerabilities in the AzeoTech DAQFactory software and application development platform.

VISAM Advisory - This advisory describes ten vulnerabilities in the VISAM VBASE Editor automation platform.

Philips Advisory - This advisory describes two SQL injection vulnerabilities in the Philips TASY Electronic Medical Record (EMR).

For more details about the advisories, including 3rd party advisories and links to exploits, as well as a discussion about the zero-day exploit reporting of the Philips vulnerabilities in August, see my article at CFSN Detailed Analysis - - subscription required.

No comments:

/* Use this with templates/template-twocol.html */