18 April 2018
Vulnerabilities in Moxa EDR-810 routersMultiple vulnerabilities have been identified in Moxa EDR-810 industrial routers. Their successful exploitation could lead to privilege escalation and denial-of-service conditions
Filter
Filter
Filter
16 April 2018
Internet of Things Security Maturity Model description to be publishedThe Industrial Internet Consortium has announced the publication of an official Internet of Things Security Maturity Model description.
11 April 2018
Multiple vulnerabilities closed in U.motion Builder building automation solutionSchneider Electric has closed multiple vulnerabilities in U.motion Builder – a total of 16 vulnerabilities with different severity levels (CVSS v.3 base score of 4.3 to 10)
11 April 2018
Attack on Cisco switchesA vulnerability in Cisco Smart Install Client was exploited in an attack on Cisco IOS switches to modify configuration files on the devices and cause a denial-of-service condition
06 April 2018
Critical vulnerability closed in Moxa AWK-3131A industrial access pointA critical vulnerability in Moxa AWK-3131A industrial access point could allow an unauthorized attacker to execute arbitrary code by injecting system commands
03 April 2018
DoS vulnerability in Siemens SIMATIC productsAn Improper Input Validation vulnerability has been identified in Siemens SIMATIC industrial automation products.
30 March 2018
Critical vulnerability closed in TIM 1531 IRC modulesSiemens has released a new firmware version for TIM 1531 IRC communication modules to close a critical vulnerability in these modules. If exploited, this vulnerability could lead to unauthorized changes in the module’s configuration and a denial of service condition
30 March 2018
New vulnerabilities in Allen Bradley MicroLogix 1400 PLCsSerious vulnerabilities have been closed in Allen Bradley MicroLogix 1400 PLC series. Exploitation of these vulnerabilities could lead to unauthorized modification of PLC configuration and cause the devices to enter a denial-of-service condition
29 March 2018
Multiple vulnerabilities identified in the Modicon family of industrial controllersUS CERT has published an advisory on vulnerabilities in the Modicon family of industrial controllers by Schneider Electric.
26 March 2018
Improper Input Validation vulnerability in Siemens industrial devicesA vulnerability that could cause a denial-of-service condition has been identified in Siemens industrial solutions. The vulnerability can only be exploited if the attacker is located in the same Ethernet segment as the targeted device