Thursday, September 1, 2022

Review – 2 Advisories Published – 9-1-22

Today, CISA’s NCCIC-ICS published a control system security advisory for products from Delta Electronics and a medical device security advisory for products from Contec Health. 

Delta Advisory - This advisory describes an out-of-bounds read vulnerability in the Delta DOPSoft software supporting the DOP-100 series HMI screens.

Contec Advisory - This advisory describes five vulnerabilities in the Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor.

For more information on these advisories and a brief discussion of potential problems with coordinating vulnerability disclosures with Chinese companies, see my article at CFSN detailed analysis - - subscription required.

No comments:

/* Use this with templates/template-twocol.html */