Periodically, critical vulnerabilities are overhyped and require a more practical approach to assessing true impacts. But in this case, Joe Slowik Principal Adversary Hunter at ICS cybersecurity firm Dragos agrees recent statements are quite appropriate for the recent F5 BIG-IP ADC vulnerability CVE-2020-5902.
F5 has released a security advisory to address a remote code execution (RCE) vulnerability – CVE-2020-5902 – in the BIG-IP Traffic Management User Interface (TMUI). An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the F5 advisory for CVE-2020-5902 and upgrade to the appropriate version.
CISA has published an advisory on path traversal, command injection, unrestricted upload of file with dangerous type, cross-site request forgery, and improper authentication vulnerabilities in Nortek Linear eMerge 50P/5000P. Versions 4.6.07 (revision 79330) and prior are affected. Successful exploitation of these vulnerabilities could allow a remote attacker to gain full system access. Nortek has released v32-09a to address the vulnerabilities. CISA also recommends a series of measures to mitigate the vulnerabilities.
CISA has published an advisory on a cross-site scripting vulnerability in ABB System 800xA Information Manager. Versions prior to 5.1 Rev E/5.1 FP4 Rev E TC6, 6.0.3.3 RU1, and 6.1 RU1 are affected. Successful exploitation of this vulnerability could allow an attacker to inject and execute arbitrary code on the information manager server. ABB has provided a list of recommended measures to mitigate the vulnerability. CISA also recommends a series of measures to mitigate the vulnerability.
Microsoft has released security updates to address vulnerabilities in Windows 10 and Windows Server. These vulnerabilities could allow a remote attacker to take control of an affected system.
July 2, 2020
CISA has updated this advisory with additional details on affected products and mitigation measures. Read the advisory at CISA.
June 18, 2020
While phishing for credentials is a top cyber attack vector, many threat actors do not need to rely on phishing because password guessing is so easy. Threat intelligence firm Flashpoint took a deep dive into its collection of over 35 billion compromised credentials and unsurprisingly discovered a primary parallel: people are predictable.
After slicing and dicing the top 10,000 bad passwords, Flashpoint observed:
The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) has published a new alert highlighting risks associated with Tor, along with technical details and recommendations for mitigation. Tor (aka The Onion Router) is software that allows users to browse the web anonymously by encrypting and routing requests through multiple relay layers or nodes.
WaterISAC convened a discussion with representatives of the Cyberspace Solarium Commission on July 1.
CISA has published an advisory on an improper restriction of XML external entity reference and uncontrolled resource consumption vulnerability in Mitsubishi Electric Factory Automation Engineering Software Products. Numerous versions of this product are affected. Successful exploitation of these vulnerabilities could allow a local attacker to send files outside of the system as well as cause a denial-of-service condition. Mitsubishi Electric recommends affected users download the latest version of each software product and update it.
1620 I Street, NW, Suite 500
Washington, DC 20006
1-866-H2O-ISAC (1-866-426-4722)
© 2025 WaterISAC. All Rights Reserved.
