You are here

Home » Cybersecurity

Cybersecurity

Rockwell Automation Logix Designer Studio 5000 (ICSA-20-191-02) – Product Used in the Water and Wastewater and Energy Sectors

CISA has published an advisory on an improper restriction of XML external entity reference vulnerability in Rockwell Automation Logix Designer Studio 5000. Versions 32.00, 32.01, and 32.02 are affected. Successful exploitation of this vulnerability could allow an unauthenticated attacker to craft a malicious file, which when parsed, could lead to some information disclosure of hostnames or other resources from the program.

Grundfos CIM 500 (ICSA-20-189-01) – Product Used in the Water Sector

CISA has published an advisory on missing authentication for critical function and unprotected storage of credentials vulnerabilities in Grundfos CIM 500. All versions prior to v06.16.00 are affected. Successful exploitation of these vulnerabilities could allow access to cleartext credential data. Grundfos recommends updating to firmware v06.16.00 and to change user credentials after updating. CISA also recommends a series of measures to mitigate the vulnerabilities.

Mitsubishi Electric GOT2000 Series (ICSA-20-189-02)

CISA has published an advisory on improper restriction of operations within the bounds of a memory buffer, session fixation, NULL pointer dereference, improper access control, argument injection, and resource management errors vulnerabilities in Mitsubishi Electric GOT2000 Series. GT27, GT25, and GT23 are affected. Successful exploitation of these vulnerabilities could allow a remote attacker to cause a denial-of-service condition or remote code execution. Mitsubishi recommends users follow as series of steps to update CoreOS to the latest version.

Click2Gov, Again? – Magecart-Style Credit Card Skimming Potentially Enabled by Click2Gov Vulnerabilities

DataBreaches.net states it best…”Here we go again?” As previously published in several Security & Resilience Updates, December 2019 – February 2020 included a significant spate of local and municipal government entities being impacted by vulnerabilities with online payment application Click2Gov. According to cybersecurity firm TrendMicro, they have identified at least eight U.S.

Critical Vulnerability in F5 BIG-IP Application Delivery Controller (ADC) is a Pretty Big Deal

Periodically, critical vulnerabilities are overhyped and require a more practical approach to assessing true impacts. But in this case, Joe Slowik Principal Adversary Hunter at ICS cybersecurity firm Dragos agrees recent statements are quite appropriate for the recent F5 BIG-IP ADC vulnerability CVE-2020-5902.

F5 Releases Security Advisory for BIG-IP TMUI RCE Vulnerability, CVE-2020-5902

F5 has released a security advisory to address a remote code execution (RCE) vulnerability – CVE-2020-5902 – in the BIG-IP Traffic Management User Interface (TMUI). An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the F5 advisory for CVE-2020-5902 and upgrade to the appropriate version.

Nortek Linear eMerge 50P/5000P (ICSA-20-184-01)

CISA has published an advisory on path traversal, command injection, unrestricted upload of file with dangerous type, cross-site request forgery, and improper authentication vulnerabilities in Nortek Linear eMerge 50P/5000P. Versions 4.6.07 (revision 79330) and prior are affected. Successful exploitation of these vulnerabilities could allow a remote attacker to gain full system access. Nortek has released v32-09a to address the vulnerabilities. CISA also recommends a series of measures to mitigate the vulnerabilities.

Pages

Subscribe to Cybersecurity