Latest Intelligence
Vulnerability Exploitation Probability Metric Proposed by NIST, CISA Researchers
NIST and CISA researchers have proposed the Likely Exploited Vulnerabilities (LEV) equations to enhance remediation prioritization based on KEV and EPSS metrics. This development is significant as it aims to improve the effectiveness of addressing vulnerabilities that are likely to be exploited.
Event Preview: 2025 Threat Detection & Incident Response (Virtual) Summit
The 2025 Threat Detection & Incident Response Summit is a virtual event set to occur on May 21st, focusing on cybersecurity strategies and solutions. This summit highlights the importance of effective threat detection and response mechanisms in the evolving landscape of cyber threats.
TrustCloud Raises $15 Million for Security Assurance Platform
TrustCloud, an AI-native security assurance firm, has successfully raised $15 million in funding to enhance its security assurance platform. This financial boost is significant as it highlights the growing investment in cybersecurity solutions amidst increasing security challenges.
Danfoss AK-SM 8xxA Series
The Danfoss AK-SM 8xxA Series has a vulnerability due to improper authentication, allowing remote attackers to bypass authentication and execute arbitrary code. This issue is significant as it affects critical infrastructure and could lead to serious security breaches if exploited.
Vertiv Liebert RDU101 and UNITY
The Vertiv Liebert RDU101 and UNITY products have critical vulnerabilities that allow for authentication bypass and stack-based buffer overflow, posing risks of denial-of-service and remote code execution. Users are urged to update their systems to mitigate these risks.
Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products
Mitsubishi Electric Iconics Digital Solutions has reported a vulnerability in their ICONICS Product Suite and MC Works64 that allows for execution with unnecessary privileges, potentially leading to information tampering. This vulnerability poses a significant risk as it could result in a denial-of-service condition on affected workstations.
AutomationDirect MB-Gateway
The AutomationDirect MB-Gateway has a critical vulnerability due to missing authentication for critical functions, allowing unauthorized remote access and potential for configuration changes or arbitrary code execution. This vulnerability has a CVSS score of 10.0, indicating its severity and the urgent need for remediation.
ABUP IoT Cloud Platform
The ABUP IoT Cloud Platform has a vulnerability related to incorrect privilege assignment, allowing unauthorized access to device profiles through a crafted JSON Web Token. Although the vendor has removed the vulnerable method, users are advised to modify authentication information due to a prior exposure period.
Assured Telematics Inc (ATI) Fleet Management System with Geotab Integration
Assured Telematics Inc. has reported a vulnerability in their Fleet Management System that allows unauthorized access to sensitive system information, potentially leading to the exposure of administrative credentials. This issue is significant as it could compromise critical infrastructure in transportation systems worldwide.
Schneider Electric PrismaSeT Active - Wireless Panel Server
The Schneider Electric PrismaSeT Active - Wireless Panel Server has a critical vulnerability (CVE-2023-4041) that allows unauthorized code execution due to a buffer overflow issue, posing risks to voltage loss monitoring. This vulnerability, which has a CVSS score of 9.8, affects all versions of the product and could lead to significant operational disruptions.
Schneider Electric Modicon Controllers
Schneider Electric's Modicon Controllers have a vulnerability that allows unauthenticated attackers to manipulate a controller's webserver URL, potentially leading to a loss of confidentiality. This issue affects multiple product versions and poses a significant risk, particularly in critical infrastructure sectors.
CISA Releases Thirteen Industrial Control Systems Advisories
CISA has released thirteen advisories addressing vulnerabilities in various Industrial Control Systems (ICS) as of May 20, 2025. These advisories are crucial for enhancing security measures in critical infrastructure, as they inform users of potential exploits and necessary mitigations.
Schneider Electric Galaxy VS, Galaxy VL, Galaxy VXL
Schneider Electric's Galaxy VS, Galaxy VL, and Galaxy VXL products are affected by a critical vulnerability that allows for unauthenticated remote code execution due to missing authentication in the SSH server. This vulnerability poses significant risks to critical infrastructure sectors and requires immediate attention to mitigate potential exploits.
Siemens Siveillance Video
Siemens Siveillance Video has a vulnerability related to missing encryption of sensitive data, which could allow unauthorized access to system configuration files and affect backup data. The vulnerability, identified as CVE-2025-1688, poses a significant risk as it can be exploited remotely, necessitating immediate attention from users to mitigate potential security breaches.
National Instruments Circuit Design Suite
The National Instruments Circuit Design Suite has multiple vulnerabilities, including out-of-bounds writes and reads, as well as a stack-based buffer overflow, which could allow attackers to execute arbitrary code or disclose information. Users are advised to update to version 14.3.1 or later to mitigate these risks.