Security
Headlines
HeadlinesLatestCVEs

Source

us-cert

Schneider Electric IGSS

This advisory contains mitigations for Classic Buffer Overflow, Unrestricted Upload of File with Dangerous Type, Path Traversal, and Missing Authentication for Critical Function vulnerabilities in Schneider Electric IGSS (Interactive Graphical SCADA System) software.

us-cert
Open in Source
Johnson Controls exacqVision Server Bundle

This advisory contains mitigations for an Improper Privilege Management vulnerability in Exacq Technologies exacqVision Server Bundle. Exacq Technologies is a subsidiary of Johnson Controls.

Mobile Industrial Robots Vehicles and MiR Fleet Software

This advisory contains mitigations for numerous vulnerabilities in Mobile Industrial Robots Vehicles and MiR Fleet software products.

Johnson Controls exacqVision

This advisory contains mitigations for an Integer Overflow or Wraparound vulnerability in Exacq Technologies exacqVision surveillance video software products. Exacq Technologies is a subsidiary of Johnson Controls.

Mitsubishi Electric MELSEC iQ-R Series C Controller Module

This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series C controller module products.

InHand Networks IR615 Router

This advisory contains mitigations for numerous vulnerabilities in the InHand Networks IR615 Router.

FATEK Automation WinProladder

This advisory contains mitigations for Out-of-bounds Write, Out-of-bounds Read, Unexpected Sign Extension, Stack-based Buffer Overflow, Improper Restriction of Operations within the Bounds of a Memory Buffer, and Use After Free vulnerabilities in FATEK WinProladder PLC programming software.

FATEK Automation Communication Server

This advisory contains mitigations for a Stack-based Buffer Overflow vulnerability in the FATEK Automation Communication Server products.

Mitsubishi Electric GOT and Tension Controller

This advisory contains mitigations for a Improper Handling of Exceptional Conditions, and Improper Input Validation vulnerabilities in Mitsubishi Electric GOT and Tension Controller products.

Emerson WirelessHART Gateway

This advisory contains mitigations for Missing Authentication for Critical Function, Improper Input Validation, Improper Limitation of a Pathname to a Restricted Directory, Write-what-where Condition, Improper Neutralization of Special Elements used in an OS Command, and Exposure of Sensitive Information to an Unauthorized Actor vulnerabilities in Emerson WirelessHART Gateway network communication devices.