Search
Close this search box.

Vulnerability Pulse

Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of August 1 - 7. Sign up to get these updates right to your inbox!

AUGUST 06, 2021

Pulse Connect Secure

Ivanti released a security update for Pulse Connect Secure to prevent attackers potential to take over an affected system.

Sources: kb.pulsesecure.net

AUGUST 05, 2021

Cisco

Multiple Cisco products have security updates to stop attackers from taking control of an affected system. RV340, RV340W, RV345 and RV345P Dual WAN Gigabit VPN Routers, Small Business RV160 and RV260 Series VPN Routers, Packet Tracer for Windows DLL, Network Services Orchestrator CLI Secure Shell Server and ConfD all should be updated.

Sources: tools.cisco.com

InterNiche products

CISA released an Industrial Control Systems advisory. The vulnerabilities found in the InterNiche products such as versions of InterNiche stack before v4.3 and versions of NicheLite before v4.3 could allow an attacker to take control of the affected systems.

Sources: us-cert.cisa.gov

DNS vulnerability

Security researchers found DNS-as-a-service vulnerabilities that could allow attackers access to sensitive corporate network information.

Sources: bleepingcomputer.com

VMware

VMware released security updates for multiple products so attackers will not be able to access confidential information.

Sources: vmware.com

AUGUST 04, 2021

CODESYS EtherNetIP

Versions of CODESYS EtherNetIP before 4.1.0.0 are vulnerable to certain requests resulting in null pointer dereference.

Sources: nvd.nist.gov

Google

Google released an updated version of Chrome for Windows, Mac and Linux that addressed vulnerabilities that would lead to attackers taking control of an affected system.

Sources: chromereleases.googleblog.com

AUGUST 03, 2021

Swisslog Healthcare

Multiple vulnerabilities were found in Swisslog Healthcare Translogic Pneumatic Tube Systems that could allow an attacker to take over an affected system.

Sources: us-cert.cisa.gov

AUGUST 02, 2021

Kubernetes Hardening Guidance

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released a report on the difficulties of securely managing a Kubernetes cluster and explained hardening strategies.

Sources: nsa.gov

SUBSCRIBE

GET ON THE BEAT

 

Keep your finger on the pulse of top industry news

RECENT NEWS
HACKS & ATTACKS
RESOURCES