Today, CISA’s NCCIC-ICS published two control system security advisories for products from Integration Objects and SEW-EURODRIVE.
Advisories
Integration Objects
Advisory - This advisory
describes an improper output neutralization for logs vulnerability in the
Integration Objects OPC UA Server Toolkit.
SEW-EURODRIVE
Advisory - This advisory
describes an improper restriction of XML external entity reference vulnerability
in the SEW-EURODRIVE MOVITOOLS MotionStudio product.
For more information on these advisories, including a look
at a DTRH look at vendor ‘failure-to-respond’, see my article at CFSN Detailed
Analysis - https://patrickcoyle.substack.com/p/2-advisories-published-1-16-24
- subscription required.
Posts
No comments:
Post a Comment