Today CISA’s NCCIC-ICS published eight control system security advisories for products from Edimax, GMOD, Delta Electronics, Hitachi Energy (3), Keysight, and Carrier.
Advisories
Edimax Advisory -
This advisory
describes an OS command injection vulnerability in the Edimax IC-7100 IP Camera.
GMOD Advisory - This
advisory
describes four vulnerabilities in the GMOD Apollo genome annotation editor.
Delta Advisory - This
advisory
describes a heap-based buffer overflow vulnerability in the Delta CNCSoft-G2
human-machine interface.
Hitachi Energy
Advisory #1 - This advisory
describes an improper validation of certificate with host mismatch
vulnerability in the Hitachi Energy XMC20, ECST, and UNEM products.
Hitachi Energy
Advisory #2 - This advisory
describes relative path traversal vulnerability in the Hitachi Energy XMC20
multiservice communication platform.
Hitachi Energy Advisory #3 - This advisory
discusses an uncontrolled search path element vulnerability in the Hitachi
Energy MACH PS700 control system.
Keysight Advisory -
This advisory
describes four vulnerabilities in the Keysight Ixia Vision Product Family.
For more information on these advisories, including links to
earlier discussions about some of these reported advisories and an apparently duplicate
CISA advisory, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/8-advisories-published-3-4-25
- subscription required.
Posts
No comments:
Post a Comment