Search
Close this search box.

Vulnerability Pulse

Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of January 1 - 7. Sign up to get these updates right to your inbox!

JANUARY 06, 2023

Nokia ASIK AirScale system module

Nokia ASIK AirScale system module contains a modified firmware vulnerability that can lead to arbitrary programs and modified Nokia programs.

Sources: CVE, Nokia

Nokia ASIK AirScale system module

Nokie ASIK AirScale system module contains a vulnerability that could allow a threat actor to place a script in a file system that could lead to arbitrary code execution.

Sources: CVE, Nokia

JANUARY 05, 2023

Hitachi Energy UNEM

Hitachi Energy UNEM contains an inadequate encryption strength, hard-coded cryptographic key and cleartext transmission vulnerability that could lead to an unauthorized user obtaining sensitive information or gaining access to the network elements.

Sources: CISA, Hitachi Energy

Hitachi Energy FOXMAN-UN

Hitachi Energy FOXMAN-UN contains inadequate encryption strength, default cryptographic key, hard-coded cryptographic key and cleartext transmission vulnerabilities that can lead to unauthorized user access and access to network elements.


Sources: CISA, Hitachi Energy

Hitachi Energy Lumada Asset Performance Management

Hitachi Energy Lumada Asset Performance Management contains a classic buffer overflow and out-of-bounds write vulnerability that can lead to a denial-of-service condition or unauthorized code execution.


Sources: CISA, Hitachi Energy

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 contains a password validation vulnerability that can lead to an unauthorized user accessing systems.

Sources: CVE, IBM

JANUARY 03, 2023

Prosys OPC UA Simulation Server

Prosys OPC UA Simulation Server contains a credential protection vulnerability that can lead to an attacker gaining access to systems.

Sources: CVE, Prosys

GET ON THE BEAT

 

Keep your finger on the pulse of top industry news

RECENT NEWS
HACKS & ATTACKS
RESOURCES