• 1
  • 2
  • 3 (current)
Thursday, 06.06.2024
Title
Johnson Controls Software House iStar Pro Door Controller
Published
June 6, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Johnson Controls Inc. Equipment: Software House iStar Pro Door Controller, ICU Vulnerability: Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker to perform a machine-in-the-middle attack to inject ...
Title
Emerson PACSystem and Fanuc
Published
June 6, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.6 ATTENTION: Low attack complexity Vendor: Emerson Equipment: PACSystem, Fanuc Vulnerabilities: Cleartext Transmission of Sensitive Information, Insufficient Verification of Data Authenticity Insufficiently Protected Credentials, Download of Code Without Integrity Check CISA is aware of a public report, known as "OT:ICEFALL", detailing vulnerabilities found ...
Tuesday, 04.06.2024
Title
Uniview NVR301-04S2-P4
Published
June 4, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 4.8 ATTENTION: Exploitable remotely/low attack complexity/public exploits available Vendor: Uniview Equipment: NVR301-04S2-P4 Vulnerability: Cross-site Scripting 2. RISK EVALUATION An attacker could send a user a URL that if clicked on could execute malicious JavaScript in their browser. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS ...
  • 1
  • 2
  • 3 (current)

Last Updates

BOSCH PSIRT
06.12.2024
SIEMENS CERT
16.12.2024
US CERT
08.11.2024
US CERT (ICS)
19.12.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds