SecurityWeek reports that industrial organizations have been warned by the Cybersecurity and Infrastructure Security Agency regarding eight vulnerabilities impacting Westermo Lynx 206-F2G industrial Ethernet switches. Many of the flaws were cross-site scripting issues, which could be exploited to facilitate web management interface and configuration software compromise with malicious code even without non-administrator access, according to S21sec researchers who discovered the flaws.
Source: SC Magazine