CISA releases 3 Industrial Control Systems Advisories

Cybersecurity and Infrastructure Security Agency sent this bulletin at 02/03/2022 12:44 PM EST

Cybersecurity and Infrastructure Security Agency (CISA) - Defend Today, Secure Tomorrow

You are subscribed to no topic for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.

2/3/2022 12:44 PM EST

ICS-CERT released the following 3 advisories today, February 3, 2022. Click on the links below for more detailed information on these Industrial Control Systems vulnerabilities.

Sensormatic PowerManage

This advisory contains mitigations for an Improper Input Validation vulnerability in the Sensormatic PowerManage operating platform.

Airspan Networks Mimosa

This advisory contains mitigations for Improper Authorization, Incorrect Authorization, Server-side Request Forgery, SQL Injection, Deserialization of Untrusted Data, OS Command Injection, and Use of a Broken or Risky Cryptographic Algorithm vulnerabilities in Airspan Networks Mimosa network management software.

FANUC Robot Controllers (Update A)

This advisory is a follow-up to the original advisory titled ICSA-21-243-02P FANUC Robot Controllers that was posted to the HSIN ICS library on August 31, 2021, and subsequently published December 7, 2021, to the ICS webpage on www.cisa.gov/uscert/ics.This advisory contains mitigations for Integer Coercion Error, and Out-of-bounds Write vulnerabilities in FANUC Robot Controllers.

Having trouble viewing this message? View it as a webpage.

You are subscribed to updates from the Cybersecurity and Infrastructure Security Agency (CISA)
Manage Subscriptions | Privacy Policy | Help

Connect with CISA:
Facebook | Twitter | Instagram | LinkedIn | YouTube