Several security vulnerabilities have been found in many products and services, like Honeywell Experion dispersed control technique (DCS) and QuickBlox, that, if successfully exploited, could outcome in intense compromise of influenced methods.
Dubbed Crit.IX, the nine flaws in the Honeywell Experion DCS system allow for “unauthorized distant code execution, which signifies an attacker would have the ability to consider above the units and change the procedure of the DCS controller, while also hiding the alterations from the engineering workstation that manages the controller,” Armis said in a statement shared with The Hacker News.
Put differently, the issues relate to deficiency of encryption and satisfactory authentication mechanisms in a proprietary protocol termed Command Facts Obtain (CDA) that is utilised to talk among Experion Servers and C300 controllers, properly enabling a menace actor to choose about the gadgets and alter the procedure of the DCS controller.
“As a end result, everyone with entry to the network is in a position to impersonate both equally the controller and the server,” Tom Gol, CTO for study at Armis, explained. ” In addition, there are style and design flaws in the CDA protocol which make it challenging to regulate the boundaries of the facts and can guide to buffer overflows.”
In a linked development, Verify Issue and Claroty uncovered major flaws in a chat and online video calling system identified as QuickBlox that is extensively applied in telemedicine, finance, and wise IoT products. The vulnerabilities could enable attackers to leak the person database from quite a few well-known programs that integrate QuickBlox SDK and API.
This involves Rozcom, an Israeli seller that sells intercoms for household and industrial use situations. A nearer examination of its cellular application led to the discovery of more bugs (CVE-2023-31184 and CVE-2023-31185) that produced it doable to download all person databases, impersonate any user, and complete total account takeover attacks.
“As a consequence, we have been capable to acquire in excess of all Rozcom intercom units, providing us entire management and making it possible for us to obtain unit cameras and microphones, wiretap into its feed, open doors managed by the gadgets, and a lot more,” the researchers reported.
Also disclosed this 7 days are distant code execution flaws impacting Aerohive/Extreme Networks accessibility points operating HiveOS/Serious IQ Engine variations right before 10.6r2 and the open-supply Ghostscript library (CVE-2023-36664, CVSS rating: 9.8) that could final result in the execution of arbitrary instructions.
Impending WEBINARShield In opposition to Insider Threats: Grasp SaaS Security Posture Administration
Nervous about insider threats? We’ve obtained you included! Sign up for this webinar to examine functional methods and the tricks of proactive security with SaaS Security Posture Administration.
Sign up for Currently
“Ghostscript is a broadly utilized but not automatically extensively acknowledged bundle,” Kroll researcher Dave Truman mentioned. “It can be executed in many distinct strategies, from opening a file in a vector picture editor these kinds of as Inkscape to printing a file by using CUPS. This indicates that an exploitation of a vulnerability in Ghostscript might not be restricted to 1 software or be right away noticeable.”
Rounding off the record is the discovery of hard-coded qualifications in Technicolor TG670 DSL gateway routers that could be weaponized by an authenticated person to gain total administrative management of the equipment.
“A remote attacker can use the default username and password to login as the administrator to the router device,” CERT/CC said in an advisory. “This permits the attacker to modify any of the administrative settings of the router and use it in unpredicted approaches.”
End users are encouraged to disable distant administration on their gadgets to prevent likely exploitation attempts and check out with the provider suppliers to determine if suitable patches and updates are readily available.
Found this short article attention-grabbing? Comply with us on Twitter and LinkedIn to read through additional special material we publish.
Some pieces of this short article are sourced from: