Monthly Patches are out for Siemens, Schneider Electric, and SAP. New Alerts for Hitachi Energy and F5. Monthly Patches for Microsoft and Adobe are expected this afternoon, Palo Alto Networks should be tomorrow. Siemens  Monthly Patches are out, with 19 new bulleitns and 15 updated bulletins. Of the new bulletins, 2 had a CVSSv3 score of 10.Mo...

UPDATE 13 July 2022 As part of our research into writing this post, we noticed that IACS UR E26 (below) had been released at exactly the same time as the amendment to IACS Rec 166 Recommendation on Cyber Resilience.   Interestingly, the Rec 166 document was amended to replace mandatory wording such ...

New Alerts for Vinchen (0-Day), Lenze, Dell, and F5. Vinchin 0-Day Vinchin Backup and Recovery MySQL Server uses Hard-coded Credentials. An attacker can leverage this vulnerability to bypass authentication on the system. CVSSv3 score of 9.8More info. Lenze  Multiple Lenze products of the cabinet series skip the password verification upon secon...

New Alerts for Bentley Nevada, Node.js, Santesoft, Rockwell Automation, F5, NetApp, and Linux. Bentley Nevada  Bentley Nevada 3701/4X and 60M100 (3701/60) Condition Monitoring System contain vulnerabilities identified as OT:ICEFALL, including Use of Hard-coded Credentials and Missing Authentication. Highest CVSSv3 score of 9.1More info. Node.j...

Monthly Patches are out for Google Android, Google Pixel, and Samsung. New Alerts for Cisco, HCL Software, Microsoft Edge, HPE, and LInux. Cisco  Cisco has publshed 9 new bulletins, 1 rated Critical, 1 High, and the rest Medium.More info. HCL Software  HCL BigFix WebUI is affected by security vulnerabilities around Moment, Async, and Ejs....

Maritime Single Window System, is your superyacht ready?  Are you aware of the Maritime new Single Window IMO proposal for January 2024?  Authorities such as the UK government have mentioned in their border strategy the implementation of 'a single window' in all UK ports by the year 2025 The IMO recently approved changes to their gui...

Monthly Patches are out for Qualcomm and Fortinet. New Alerts for Festo, IBM, Dell, WatchGuard, F5, and Linux.                  Android and Samsung patches may come out this afternoon. Festo  The Festo controller CECC-X-M1 product family is affected by a ...

New Alerts for StrangeBee, Google Chrome (Exploit), and OpenSSL.                   Not sure what happened to the Mobile patch day, maybe later this afternoon or next week. StrangeBee  A critical vulnerability has been identified in TheHive API endpoint. An attacker exploiting the vulnerability will ...

Monthly Patches are out for MediaTek. New Alerts for Lexmark and Linux. Tomorrow is Patch Day for Mobile. Lexmark  Lexmark firmware is read-only, and normally if a device is compromised a reboot should clear the issue. There is a vulnerability that allows an attacker that has already compromised the device to make their compromise persistent, ...

New Alerts for Exemys, GitLab, IBM, Tenable, Microsoft Edge, and Dell. Exemys  Exemys RME1 contains an Improper Authentication vulnerability that allows a remote attacker to use a specific credential string to bypass authentication on the web interface and perform administrative operations. CVSSv3 score of 9.8This module is EOL and will not be...

Maritime Executive produced an interesting article which references some great work by Marie Larsen from the Norwegian University of Science and Technology, around the perception of cyber risk in the maritime domain. I feel that the Maritime Executive title of "Maritime Cyber Security Starts With The Crew" is inappropriate, as the technical co...

New Alerts for IBM, NetApp, NETGEAR, and Linux. IBM  Multiple vulnerabilities affect IBM Db2 On Openshift and IBM Db2 and Db2 Warehouse on Cloud Pak for Data. Highest CVSSv3 score of 9.8More info.IBM Watson Discovery for IBM Cloud Pak for Data contains vulnerable versions of Node.js modules used in Web clients. CVSSv3 score of 9.8More info. Ne...

New Alerts for Advantech, Dell, IBM, Omron, Motorola, NETGEAR, and Node.js. Advantech  Advantech iView contains several vulnerabilities, including SQL Injection, Missing Authentication for Critical Function, Relative Path Traversal, and Command Injection. Successful exploitation of these vulnerabilities could allow an attacker to read or modif...

New Alerts for Hitachi Energy, Google Chrome, Google ChromeOS, IBM, HPE, and Linux. Hitachi Energy A vulnerability exists in the HCI Modbus TCP function included in RTU500 series firmware. An attacker could exploit the vulnerability by sending a specially crafted message to the RTU500 in a high rate, causing the targeted RTU500 CMU to reboot. The v...

New Alerts for curl, NetApp, and Linux. curl  When curl does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a MitM attack to go unnoticed and allows it to inject data to the client.More info.curl supports "chained" HTTP compression algorithms, with an unbounded number of accepta...

New Alerts for Secheron, Pyramid Solutions, Microsoft Edge, Hitachi, Brocade, WatchGuard, and Linux. Secheron  Secheron SEPCOS Control and Protection Relay contains multiple security vulnerabilities, including Improper Enforcement of Behavioral Workflow, Lack of Administrator Control over Security, Improper Privilege Management, Insufficiently...