Today, CISA’s NCCIC-ICS published a control system security advisory for products from GE Gas Power.
GE Advisory - This advisory describes two vulnerabilities in the GE Gas Power ToolBoxST software platform.
GE Gas Power also published a Log4Shell advisory on the day they published the base advisory for these vulnerabilities. I will have further details on my Public ICS Disclosure post this weekend.
For more details about the advisory, see my article at CFSN
Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-published-1-25-22
- subscription required.
Posts
No comments:
Post a Comment