Home / News

News

Vulnerabilities in Schneider Electric industrial solutions

15 January 2019

Critical and severe vulnerabilities have been identified in GP-Pro EX programming environment, Zelio Soft software and IIoT Monitor platform
Critical vulnerabilities in Siemens SINUMERIK controllers

14 December 2018

Exploitation of vulnerabilities in Siemens SINUMERIK controllers cold allow remote code execution, privilege escalation and device denial-of-service conditions
IoT Security in the ‘Smart Manufacturing’ world: a new study by ENISA

11 December 2018

ENISA has released a new study: “Good Practices for Security of Internet of Things in the context of Smart Manufacturing. Kaspersky Lab ICS CERT experts contributed to the study.
Critical vulnerability in Modicon M221 PLC

23 November 2018

A critical vulnerability in Modicon M221 PLC could allow attackers to intercept traffic by remotely changing IPv4 parameters
Web vulnerabilities in Siemens SIMATIC operator panels

16 November 2018

The most serious of the vulnerabilities could allow arbitrary files to be downloaded from the device
Vulnerabilities in Siemens industrial products

16 November 2018

The most dangerous of the vulnerabilities affect the SIMATIC S7-400 CPU family and the SIMATIC IT Production Suite software package. The vulnerabilities have been fixed for most of the affected products
Schneider Electric has fixed a vulnerability in SESU software

08 November 2018

The vulnerability affects the Schneider Electric Software Update (SESU) tool, which is used to notify users when updated Schneider Electric software is available
Critical vulnerabilities in CirCarLife electric vehicle chargers

08 November 2018

Successful exploitation of these vulnerabilities could allow a remote attacker to retrieve credentials to bypass authentication, and to access critical information
Critical vulnerabilities in AVEVA industrial software

07 November 2018

The vulnerabilities affect InduSoft Web Studio and InTouch Edge HMI and could allow remote execution of arbitrary code
Multiple vulnerabilities in Advantech WebAccess

29 October 2018

Vulnerabilities identified in Advantech WebAccess include buffer overflow, path traversal, improper privilege management, etc.