CND News and Blog

New Vulnerabilities Friday 11 November


New Alerts for Omron, Moxa, Belden, Microsoft Edge, Dell, NetApp, and Linux.

Omron 

An Active Debug Code vulnerability exists in the NJ/NX-series Machine Automation Controllers. A remote attacker can illegally access the controllers and use the vulnerability to cause a DoS or RCE. CVSSv3 score of 8.3
More info. And here.

Use of Hard-coded Credentials and Authentication Bypass by Capture-replay vulnerabilities exist in the communications functions between the NJ/NX-series Machine Automation Controllers, Automation software Sysmac Studio, and NA-series Programmable Terminals. An attacker may use these vulnerabilities to bypass authentication in the communications connection process and perform unauthorized access to the controller products. Highest CVSSv3 score of 9.4
More info. And here.

Moxa 

Moxa VPort Series contains an Improper Input Validation vulnerability, that could allow a remote attacker to cause the RTSP service to crash.
More info.

Belden 

Multiple Java SE vulnerabilities in Belden/Hirschmann software products. CVSSv3 score of 7.5
More info.

Microsoft 

Microsoft has updated Edge with the latest chromium security fixes.
More info.

Dell 

Dell Secure Connect Gateway contains remediation for multiple vulnerabilities that may be exploited by malicious users to compromise the affected system. Dell rates this Critical.
More info.

NetApp 

NetApp has published 10 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8 Some patches are available.
More info.

Linux 

OpenSUSE has updated the kernel. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, 08 December 2022

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/

Are You Ready To Find Out More?

Arrange a Chat With Our Friendly Service Delivery Team.