New Alerts for Microsoft Edge, Johnson Controls, Nice, Planet Technology, Bosch, and Mitsubishi Electric.
Microsoft
Microsoft has updated Edge with the latest chromium security fixes.
More info.
Johnson Controls has updated Software House iSTAR Configuration Utility (ICU) tool to fix a vulnerability that allows a remote attacker to achieve buffer overflow. CVSSv4 score of 9.3
More info. And here.
Nice Linear eMerge E3 contains an OS command injection vulnerability. CVSSv4 score of 9.3
Replace Controller boards if compromised.
More info. And here.
Planet Technology Network Products contain several vulnerabilities, including OS command injection, use of hard-coded credentials, and missing authentication for critical function. Highest CVSSv4 score of 9.3
More info.
Multiple ctrlX OS vulnerabilities exist in Device Admin and Solutions. Highest CVSSv3 score of 7.5
More info.
A DoS vulnerability exists in the Ethernet function of multiple FA products. CVSSv3 score of 5.9
More info.
