Search
Close this search box.

Vulnerability Pulse

Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of May 21 - 27. Sign up to get these updates right to your inbox!

MAY 26, 2023

Barracuda Networks Email Security Gateway Appliance

Barracuda Networks Email Security Gateway Appliance contains an improper input validation vulnerability that can lead to remote command injection.

Sources: CISA, NIST

MAY 25, 2023

Moxa MXsecurity Series

Moxa MXsecurity Series contains command injection and use of hard-coded credentials vulnerabilities that can allow an unauthorized user to bypass authentication or to execute arbitrary commands on the device.

Sources: CISA, Moxa

MAY 23, 2023

Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x products

Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x products contain a use after free vulnerability that can allow an attacker to disclose sensitive information or lead to a denial-of-service.


Sources: CISA, Hitachi Energy

Hitachi Energy’s RTU500 Series product

Hitachi Energy’s RTU500 Series product contains out-of-bounds read, infinite loop, classic buffer overflow and more vulnerabilities that can allow an attacker to crash the device being accessed or cause a denial-of-service condition.


Sources: CISA, Hitachi Energy

Mitsubishi Electric MELSEC Series CPU module

Mitsubishi Electric MELSEC Series CPU module contains a classic buffer overflow vulnerability that can allow a remote attacker to cause a denial-of-service condition or execute malicious code on a target product by sending specially crafted packets.


Sources: CISA, Mitsubishi Electric

Horner Automation Cscape

Horner Automation Cscape contains stack-based buffer overflow, out-of-bounds read, use after free and more vulnerabilities that can allow an attacker to disclose information and to execute arbitrary code.


Sources: CISA, Horner

MAY 22, 2023

Apple iPadOS, MacOS, iOS, tvOS, watchOS, Safari

Apple iPadOS, MacOS, iOS, tvOS, watchOS and Safari contain an out-of-bounds read vulnerability that can lead to a disclosure of sensitive data.

Sources: CISA, NIST

GET ON THE BEAT

 

Keep your finger on the pulse of top industry news

RECENT NEWS
HACKS & ATTACKS
RESOURCES