Every week, we catalog the major industrial cybersecurity vulnerabilities and updates you should know about. Here are the notable threats from the week of December 19 - 25. Sign up to get these updates right to your inbox!
December 25, 2021
December 23, 2021
IBM
IBM Cloud Pak for Automation 21.0.2 has a cross-site scripting vulnerability that could lead to credentials being disclosed.
Sources:IBM vulnerabilities,
IBM support,
NIST
mySCADA myPRO
Versions of mySCADA myPRO can be accessed by remote attackers without authorization.
Sources:CISA,
NIST
December 22, 2021
Log4Shell
CISA, the FBI, the NSA and the cybersecurity authorities of Australia, Canada, New Zealand and the United Kingdom have released a joint Cybersecurity Advisory due to ongoing mitigation efforts for multiple vulnerabilities in Apache’s Log4j…
Sources:CISA
Apache
Apache released a security update for HTTP server due to two vulnerabilities being found, one of which would allow an attacker to rake control of affected systems.
Sources:Apache update,
Apache announcement
December 21, 2021
WECON
There are stack-based buffer overflow and heap-based buffer overflow vulnerabilities in the WECON LeviStudioU.
Sources:CISA advisory
VMware
Versions of the VMware ONE UEM console have an SSRF vulnerability that could lead to an attacker gaining access to sensitive information.
Sources:VMware,
NIST
IBM
Versions of IBM Automation Workflow and IBM Business Process Manager have a cross-site scripting vulnerability.
Sources:IBM,
IBM,
NIST
December 20, 2021
Zoho
Versions of Zoho ManageEngine ServiceDesk Plus MSP have an unauthenticated remote code execution vulnerabilitiy.
Sources:ManageEngine,
NIST
December 19, 2021
Mitsubishi
There is an integer underflow vulnerability in versions of Mitsubishi Electric GX Works2, MELSOFT Navigator and EZSocket
Sources: