Register

Tag: code execution

Recorded Future exposes RedJuliett cyber-espionage campaign, targeting Taiwan and expanding globally
Recorded Future exposes RedJuliett cyber-espionage campaign, targeting Taiwan and expanding globally
Recorded Future’s Insikt Group identified cyber-espionage activity predominantly targeting government, education, technology, and diplomatic organizations in Taiwan, conducted by a likely Chinese state-sponsored threat activity group tracked RedJuliett. The data also identified that between November 2023 and April 2024, these…
Claroty’s Team82 details exploitation of classic deserialization vulnerability in Siemens EnMPro line
Claroty’s Team82 details exploitation of classic deserialization vulnerability in Siemens EnMPro line
Researchers from Claroty’s Team82 discovered a deserialization vulnerability, CVE-2022-23450, in Siemens' SIMATIC Energy Manager (EnMPro) product. The critical vulnerability, with a CVSS v3 score of 10.0, was resolved in EnMPro V7.3 Update 1 and later versions. Prior versions are also…
CISA discloses presence of ICS vulnerabilities in Siemens SIMATIC PCS, Omron equipment
ICS hardware vulnerabilities disclosed in Delta Electronics, Yokogawa, PTC, Mitsubishi Electric equipment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published Thursday four industrial control systems (ICS) advisories, providing asset owners and operators with timely information about current security issues, vulnerabilities, and exploits surrounding ICS. The agency has found security loopholes in…
Security gaps found in FileWave MDM systems used across federal agencies, education, large enterprises
Security gaps found in FileWave MDM systems used across federal agencies, education, large enterprises
Researchers from Claroty’s Team82 have disclosed two critical vulnerabilities in FileWave’s mobile device management (MDM) system. These security loopholes are remotely exploitable, allowing an attacker to bypass authentication mechanisms and gain full control over the MDM platform and its managed…
Several security loopholes in Siemens’ SINEC industrial NMS lead to DoS, credential leaks, remote code execution
Several security loopholes in Siemens’ SINEC industrial NMS lead to DoS, credential leaks, remote code execution
Claroty’s research arm Team82 revealed the presence of about 15 vulnerabilities in Siemens’ SINEC network management system (NMS). These loopholes, if exploited, pose a number of risks to Siemens’ devices on the network, including denial-of-service attacks, credential leaks, and remote…

More Tag: code execution posts:

security defects
Security defects found in ICS equipment from Aveva, xArrow, Siemens

Join the Industrial Cyber Community

Get the latest breaking OT/ICS news, access the resources and participate in our ICS Forum.
Register