Security
Headlines
HeadlinesLatestCVEs

Source

us-cert

Keysight N6854A Geolocation server and N6841A RF Sensor software

This advisory contains mitigations for Relative Path Traversal, and Deserialization of Untrusted Data vulnerabilities in Keysight N6854A Geolocation and server and N6841A Sensor software, a spectrum monitoring platform.

us-cert
Open in Source
#vulnerability
Horner Automation Cscape Csfont

This advisory contains mitigations for Out-of-bounds Write, Out-of-bounds Read, and Heap-based Buffer Overflow vulnerabilities in Horner Automation Cscape PLC management software.

Rockwell Automation Logix Controllers

This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Rockwell Automation Logix Controllers.

Matrikon OPC Server

This advisory contains mitigations for an Improper Access Control vulnerability in Makitron OPC software.

Mitsubishi Electric FA Engineering Software Products (Update E)

This updated advisory is a follow-up to the advisory update titled ICSA-21-049-02 Mitsubishi Electric FA Engineering Software Products (Update D) that was published February 8, 2022, to the ICS webpage on cisa.gov/ics. This advisory contains mitigations for Heap-based Buffer Overflow, and Improper Handling of Length Parameter Inconsistency vulnerabilities in Mitsubishi Electric FA engineering software.

Mitsubishi Electric Factory Automation Engineering Products (Update G)

This updated advisory is a follow-up to the advisory update titled ICSA-20-212-04 Mitsubishi Electric Factory Automation Engineering Products (Update F) that was published February 8, 2022, to the ICS webpage on cisa.gov/ics. This advisory contains mitigations for an Unquoted Search Path or Element vulnerability in Mitsubishi Electric Factory Automation Engineering products.

Mitsubishi Electric MELSEC iQ-F Series

This advisory contains mitigations for Improper Input Validation vulnerabilities in Mitsubishi Electric MELSEC iQ-F Series CPU modules.

Circutor COMPACT DC-S BASIC

This advisory contains mitigations for a Stack-based Buffer Overflow vulnerability in the Circutor COMPACT DC-S BASIC smart metering concentrator.

Delta Electronics CNCSoft

This advisory contains mitigations for Stack-based Buffer Overflow, and Out-of-bounds Read vulnerabilities in the Delta Electronics CNCSoft software management platform.

Mitsubishi Electric MELSOFT iQ AppPortal

This advisory contains mitigations for Missing Authorization, Out-of-bounds Write, NULL Pointer Dereference, Classic Buffer Overflow, HTTP Request Smuggling, and Infinite Loop vulnerabilities in Mitsubishi Electric MELSOFT iQ AppPortal products.