Today CISA’s NCCIC-ICS published
four control system security advisory for products from AVEVA (2), ZLAN Information
Technology, and Yokogawa. They also published a medical device security
advisory for products from ZOLL.
Advisories
AVEVA Advisory #1 - This advisory
describes an insertion of sensitive information into a log file vulnerability
in the AVEVA PI to CONNECT Agent.
AVEVA Advisory #2 - This advisory
describes an uncaught exception vulnerability in the AVEVA PI Data Archive.
ZLAN Advisory - This advisory
describes two missing authentication for critical function vulnerabilities in
the ZLAN ZLAN5143D.
Yokogawa Advisory - This advisory
describes 14 vulnerabilities in the Yokogawa FAST/TOOLS product.
ZOLL Advisory - This advisory
describes an insertion of sensitive information into externally-accessible file
or directory vulnerability in the ZOLL ePCR IOS Mobile Application.
Posts
No comments:
Post a Comment