Advisories

The following is a list of all publicly disclosed vulnerabilities discovered by Kaspersky ICS CERT researchers. While the affected vendor is working on a patch for these vulnerabilities, Kaspersky customers are protected from exploitation by security filters delivered ahead of public disclosure. Once the vendor patches the vulnerability, we publish an accompanying security advisory, which describes the issue, including links to the vendor’s fixes.

Filter

23 June 2020

CVE-2020-10628

KLCERT-20-013

KLCERT-20-013: Unencypted password transmission in Honeywell ControlEdge PLC and RTU

20 May 2020

CVE-2020-10640

KLCERT-20-012

KLCERT-20-012: Missing Authentication in Emerson OpenEnterprise SCADA before 3.3.4

20 May 2020

CVE-2020-10636

KLCERT-20-011

KLCERT-20-011: Inadequate Encryption Strength in Emerson OpenEnterprise SCADA before 3.3.4

20 May 2020

CVE-2020-10632

KLCERT-20-010

KLCERT-20-010: Improper Ownership Management in Emerson OpenEnterprise SCADA before 3.3.4

23 March 2020

CVE-2019-15690

KLCERT-20-009

KLCERT-20-009: Remote Code Execution on LibVNC version prior to 0.9.12

23 March 2020

CVE-2019-15695

KLCERT-20-008

KLCERT-20-008: Remote Code Execution on TigerVNC version prior to 1.10.1

23 March 2020

CVE-2019-15693

KLCERT-20-007

KLCERT-20-007: Remote Code Execution on TigerVNC version prior to 1.10.1

23 March 2020

CVE-2019-15692

KLCERT-20-006

KLCERT-20-006: Remote Code Execution on TigerVNC version prior to 1.10.1

23 March 2020

CVE-2019-15691

KLCERT-20-005

KLCERT-20-005: Remote Code Execution on TigerVNC version prior to 1.10.1

23 March 2020

CVE-2019-15694

KLCERT-20-323

KLCERT-20-323: Remote Code Execution on TigerVNC version prior to 1.10.1

4

...

Select a date

Search by vendor

Materials

Advisories RSS feed

Back to top

Select a date

Search by vendor

Filter