Firmware Vulnerability in Mitsubishi Electric

22 May 2019

A vulnerability in Mitsubishi Electric’s MELSEC-Q Series Ethernet Module could allow a remote attacker to gain escalated privileges, according to an ICS-CERT advisory. Reported by Nozomi Networks, the vulnerability “could allow an attacker to render the PLCs statue in fault mode, requiring a cold restart for recovering the system and/or doing privilege escalation or executive arbitrary code in the context of the affected system of the workstation engineering software,” said Nozomi Networks co-founder and CTO Moreno Carullo.

Read full article on Infosecurity

Date:

22 May 2019

Categorie(s):

NEWS

Tag(s):

Firmware, Mitsubishi Electric, Security Pro, Vulnerability

Christie’s auction house suffers cyberattack, disrupting art auction schedule15 May 2024
Zscaler enhances AI data protection platform with new security innovations15 May 2024
Investigating lateral movements with Amazon Detective investigation and Security Lake integration14 May 2024
Microsoft fixes a bug abused in QakBot attacks plus a second under exploit14 May 2024
Unlocking cybersecurity excellence: The BISO’s vital role in safeguarding enterprises14 May 2024