Mimecast Acquires Segasec to Boost Phishing Defense

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2019-6854
PUBLISHED: 2020-01-06

A CWE-264 Permissions, Privileges, and Access Controls vulnerability exists in a folder within EcoStruxure Geo SCADA Expert (ClearSCADA) -with initial releases before 1 January 2019- which could cause a low privilege user to delete or modify database, setting or certificate files. Those users must h…

CVE-2019-6855
PUBLISHED: 2020-01-06

An Improper Authorization – CWE-285 vulnerability exists in EcoStruxure� Control Expert V14.0 and all versions of Unity Pro (previously calledEcoStruxure� Control Expert), which could allow a bypass of the authentication process between EcoStruxure Control E…

CVE-2019-6856
PUBLISHED: 2020-01-06

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP.

CVE-2019-6857
PUBLISHED: 2020-01-06

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the controller when reading specific memory blocks using Mod…

CVE-2018-7794
PUBLISHED: 2020-01-06

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading data with invalid index using Modbus TCP.

Read More HERE

Leave a Reply