New Alerts for Ricoh, MB Connect, IBM, Helmholz, and CODESYS.

Ricoh 

Ricoh MFP and Printers contain vulnerabilities in the PostScript interpreter and embeded webserver that could result in RCE. Highest CVSSv3 score of 9.1
More info.

MB Connect 

The data24 service that is bundled with every installation of mbCONNECT24/mymbCONNECT24 has two vulnerabilities in core components that can lead to a complete loss of confidentiality, integrity and availability. Highest CVSSv3 score of 9.1
More info.

IBM 

IBM has published a Critical bulletin for Rapid Infrastructure Automation.
More info.

Helmholz 

The data24 service that is bundled with every installation of myREX24/myREX24.virtual has two vulnerabilities in core components that can lead to a complete loss of confidentiality, integrity and availability. Highest CVSSv3 score of 9.1
More info.

CODESYS 

Due to an insecure standard configuration of the CODESYS Gateway, it is accessible remotely by default. CVSSv3 score of 5.3
More info.

The OPC UA contains an optional security policy that is vulnerable against attacks on the private key, resulting in loss of confidentiality or authentication bypass. The affected policy may be enabled by a customer configuration. CVSSv3 score of 7.5
More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts