Search
Close this search box.

Vulnerability Pulse

Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of July 14 - 20. Sign up to get these updates right to your inbox!

JULY 18, 2024

Philips Vue PACS

Philips Vue PACS contains out-of-bounds write, deserialization of untrusted data, uncontrolled resource consumption and more vulnerabilities that could allow an unauthorized person or process to eavesdrop, view or modify data, gain system access, perform code execution, install unauthorized software or affect system data integrity to negatively impact system confidentiality, integrity or availability.

Sources: CISA, Philips

Subnet Solutions PowerSYSTEM Center

Subnet Solutions PowerSYSTEM Center contains a prototype pollution vulnerability that could allow an authenticated attacker to elevate permissions.


Sources: CISA, Subnet

Mitsubishi Electric MELSOFT MaiLab

Mitsubishi Electric MELSOFT MaiLab contains an improper verification of cryptographic signature vulnerability that could allow a remote attacker to cause a denial-of-service condition in the target product.


Sources: CISA, Mitsubishi

Cisco Webex App

The Cisco Webex App  contains multiple vulnerabilities that could allow an unauthenticated attacker to gain access to sensitive credential information.


Sources: Cisco, CISA

JULY 16, 2024

Rockwell Automation Pavilion 8

Rockwell Automation Pavilion 8 products contain a privilege escalation vulnerability that could allow a malicious user with basic privileges to access functions that should only be available to users with administrative level privileges. Successful exploitation of this vulnerability could allow an attacker to create new users and view sensitive data.

Sources: CISA

GET ON THE BEAT

 

Keep your finger on the pulse of top industry news

RECENT NEWS
HACKS & ATTACKS
RESOURCES