Cisco – Several vulnerabilities in ASA und Firepower FTD Software
2024-04-25 Cisco published the following three vulnerabilities for the Cisco Adaptive Security Appliance (ASA) software and the Cisco Firepower Threat Defense (FTD) software on 24.04.2024: – CVE-2024-20359 / CVSS: 6.0 – CVE-2024-20353 / CVSS: 8.6 – CVE-2024-20358 / CVSS: 6.0 Cisco has confirmed that the vulnerabilities CVE-2024-20359 and CVE-2024-20353 are already being exploited and strongly […]
Continue readingBackdoor in upstream xz/liblzma in various LINUX/SOLARIS distributions – CVE-2024-3094
2024-02-04 In the upstream of the pack program “xz”, concerning the library “liblzma” in versions 5.6.x, a high-risk vulnerability has been actively introduced, which is used in various LINUX/SOLARIS distributions. This allows the authentication function of OpenSSH to be specifically forwarded to malicious code and enables direct access to the system. Our checks have shown […]
Continue readingPaessler closes XSS vulnerability in PRTG – CVE-2023-51630 – Correction
2024-01-16 Paessler has closed the high-risk vulnerability CVE-2023-51630 in the network monitoring solution PRTG. The XSS vulnerability allows a remote attacker to bypass authentication and take over the session of an active user. Paessler has closed the vulnerability with the new PRTG version 24.1.90.1306 and published further details on https://www.paessler.com/prtg/history/stable. Although the vulnerability can only […]
Continue readingPaessler closes XSS vulnerability in PRTG – CVE-2023-51630
2024-01-16 Paessler has closed the high-risk vulnerability CVE-2023-51630 in the network monitoring solution PRTG. The XSS vulnerability allows a remote attacker to bypass authentication and take over the session of an active user. Paessler has closed the vulnerability with the new PRTG version 23.4.90.1299 and published further details on https://www.paessler.com/prtg/history/stable. Although the vulnerability can only […]
Continue readingCritical vulnerability fixed in Trend Micro Worry-Free Business Security
2023-09-21 Trend Micro has fixed the critical vulnerability CVE-2023-41179 in their Worry-Free Business Security solution and provides patch 2495 for version 10.0 SP1. Trend Micro publishes further details in this security bulletin. The Trend Micro Worry-Free Business Security instances delivered by VIVAVIS are operated in a secure network segment that is largely separated from the […]
Continue readingMeinberg fixes several vulnerabilities in LANTIME Firmware – MBGSA-2023.04
2023-08-17 Meinberg has released a new firmware version for the LANTIME M and LANTIME IMS series NTP time servers to close several vulnerabilities. Two of the 12 vulnerabilities are rated with a severity level high. The latest version is 7.08.002. For more information on vulnerabilities CVE-2023-2650, CVE-2023-29491, CVE-2023-28322, CVE-2023-28321, CVE-2023-28320, CVE-2023-28319, CVE-2023-1667, CVE-2023-2283, CVE-2023-0361, and […]
Continue readingMeinberg fixes several Vulnerabilities in LANTIME Firmware – MBGSA-2023.02b
23/03/2023 Update Security Advisory MBGSA-2023.02 has been updated by the vendor. Another not yet CVE-registered vulnerability was closed in the LTOS web interface. Since the vulnerability can only be exploited by privileged super users, Meinberg rates the severity as low, but recommends an update to firmware version 7.06.013, see updated Meinberg Advisory. 14/03/2023 Meinberg have […]
Continue readingNetwork topology and geospatial network visualization as major enhancements to an existing system – Learn more about the story behind
Netze BW GmbH, located in Stuttgart, Germany, operates the gas supply of the whole region Mittlerer Neckar. The overall length of the network is 6000km and comprises all pressure levels from high pressure (3 to 60 bar) to low pressure. The gas network of EnBW supplies gas to 240 municipalities and communities as well as […]
Continue readingStarting into digitization with fast solutions on today’s World Water Day
Today is World Water Day! The United Nations warns of a global water crisis on the occasion of increasing droughts and flood disasters, because climate change clearly affects our probably most important resource. Water supply networks are subject to the highest demands in terms of reliability and safety of operation. Meeting these requirements is becoming […]
Continue reading