2024-12-28 02:05:28 Pacfic
Critical Vulnerabilities in Industrial Control Systems - 11d
Multiple critical vulnerabilities have been disclosed impacting various Industrial Control Systems (ICS) products. These vulnerabilities, identified in AutomationDirect’s C-More EA9 Programming Software, Planet Technology’s industrial switch WGS-804HPT, and other products, could enable remote code execution (RCE) and other serious security compromises if exploited. The vulnerabilities highlight the ongoing challenge of securing critical infrastructure against sophisticated cyberattacks. Organizations are urged to apply the necessary mitigations and keep their ICS software updated to prevent attacks and minimize the risk to their operations.
CISA Adds Multiple Actively Exploited Vulnerabilities to KEV Catalog - 22d
Multiple vulnerabilities have been added to the U.S. CISA’s Known Exploited Vulnerabilities catalog. These include issues in Zyxel firewalls, Cisco ASA, and others, highlighting the ongoing need for timely patching and vulnerability management. Active exploitation in the wild is a key concern.