Search
Close this search box.

Vulnerability Pulse

Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of August 21 - 27. Sign up to get these updates right to your inbox!

AUGUST 25, 2022

Cisco ACI Multi-Site Orchestrator, FXOS and NX-OS software

Cisco released security updates for ACI Multi-Site Orchestrator, FXOS and NX-OS software due to vulnerabilities found that could lead to an attacker gaining control of affected systems.

Sources: Cisco Security Advisories, CISA

FATEK Automation FvDesigner

FATEK Automation FvDesigner contains an out-of-bounds write vulnerability that could lead to remote code execution.

Sources: FATEK Customer Support, CISA

AUGUST 24, 2022

Delta Electronics Industrial Automation DIALink 

Delta Industrial Automation DIALink contains a use of hard-coded cryptographic key vulnerability that could lead to the exposure of sensitive data.

Sources: Delta Electronics, CISA

AUGUST 23, 2022

mySCADA Technologies mySCADA myPRO

mySCADA myPRO contains a command injection vulnerability.

Sources: mySCADA, CISA

Measuresoft ScadaPro Server

Measuresoft ScadaPro Server contains an out-of-bounds write vulnerability that could lead to arbitrary code execution.

Sources: Measuresoft, CISA

Hitachi Energy RTU500 Series

Hitachi Energy RTU500 Series contains a stack-based buffer overflow vulnerability.

Sources: Hitachi Energy Advisory, CISA

Measuresoft ScadaPro Server and Client

Measuresoft ScadaPro Server and Client contain untrusted pointer dereference, stack-based buffer overflow, use after free and link following vulnerabilities.

Sources: CISA

Illumina Local Run Manager

Illumina Local Run Manager contains path traversal, unrestricted upload of file with dangerous type, improper access control and cleartext transmission of sensitive information vulnerabilities.

Sources: Illumina, CISA

VMware Tools

VMware released a security update due to a vulnerability found in Tools.

Sources: VMware Security Advisory, CISA

Mozilla Firefox, Firefox ESR and Thunderbird

Mozilla released security updates for Firefox, Firefox ESR and Thunderbird due to vulnerabilities found that could lead to an attacker gaining control of affected systems.

Sources: Firefox Advisory, Firefox ESR Advisory, Thunderbird Advisory, CISA

GET ON THE BEAT

 

Keep your finger on the pulse of top industry news

RECENT NEWS
HACKS & ATTACKS
RESOURCES