Tag: Centralintelligencesystem

CISA Warns for Flaws Affecting Industrial Control Systems from Major Manufacturers
Events, Risk, Security

CISA Warns for Flaws Affecting Industrial Control Systems from Major Manufacturers

Sewio, InHand Networks, Sauter Controls, and Siemens products are all affected by serious security issues, according to a number of Industrial Control Systems (ICS) advisories published by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). The most serious vulnerability affects Sewio's RTLS Studio, which CISA states may be used by an attacker to "get unauthorized access to the server, modify information, create a denial-of-service issue, gain escalation privileges, and execute arbitrary code." This includes CVE-2022-45444 (CVSS score: 10.0), a vulnerability where the application's database has hard-coded passwords for a subset of users that could provide remote adversaries unrestricted access read the complete article CISA Warns for Flaws Affecting Industrial Control ...