InfoSecBulletin Cybersecurity for mankind
CISA published an advisory about Industrial Control Systems (ICS) on February 22, 2024, to inform about security issues, vulnerabilities, and exploits related to ICS.
- ICSA-24-053-01 Delta Electronics CNCSoft-B DOPSoft:
EXECUTIVE SUMMARY
CVSS v3 7.8 - ATTENTION: Low attack complexity
Vendor: Delta Electronics
Equipment: CNCSoft-B DOPSoft
Vulnerability: Uncontrolled Search Path Element - RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to achieve remote code execution. - AFFECTED PRODUCTS:
The following Delta Electronics products are affected:
CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed
By infosecbulletin / Wednesday , June 4 2025IBM has issued a security advisory for vulnerabilities in its QRadar Suite Software and Cloud Pak for Security platforms. These...Read More
ALERT
Thousands of IP addresses compromised nationwide: CIRT warnBy infosecbulletin / Wednesday , June 4 2025As Bangladesh prepares for the extended Eid-ul-Adha holidays, the BGD e-GOV Computer Incident Response Team (CIRT) has issued an urgent...Read More
New Android Malware ‘Crocodilus’ Targets Banks in 8 Countries
By infosecbulletin / Tuesday , June 3 2025In March 2025, the Threatfabric mobile Threat Intelligence team identified Crocodilus, a new Android banking Trojan designed for device takeover....Read More
Qualcomm Patches 3 Zero-Days Used in Targeted Android Attacks
By infosecbulletin / Tuesday , June 3 2025Qualcomm has issued security patches for three zero-day vulnerabilities in the Adreno GPU driver, affecting many chipsets that are being...Read More
Critical RCE Flaw Patched in Roundcube Webmail
By infosecbulletin / Monday , June 2 2025Roundcube Webmail has fixed a critical security flaw that could enable remote code execution after authentication. Disclosed by security researcher...Read More
Hacker claim Leak of Deloitte Source Code & GitHub Credentials
By infosecbulletin / Sunday , June 1 2025A hacker known as "303" claim to breach the company's systems and leaked sensitive internal data on a dark web...Read More
CISA Issued Guidance for SIEM and SOAR Implementation
By infosecbulletin / Sunday , June 1 2025CISA and ACSC issued new guidance this week on how to procure, implement, and maintain SIEM and SOAR platforms. SIEM...Read More
Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora
By infosecbulletin / Saturday , May 31 2025The Qualys Threat Research Unit (TRU) found two local information-disclosure vulnerabilities in Apport and systemd-coredump. Both issues are race-condition vulnerabilities....Read More
Australia enacts mandatory ransomware payment reporting
By infosecbulletin / Saturday , May 31 2025New ransomware payment reporting rules take effect in Australia yesterday (May 30) for all organisations with an annual turnover of...Read More
Why Govt Demands Foreign CCTV Firms to Submit Source Code?
By infosecbulletin / Saturday , May 31 2025Global makers of surveillance gear have clashed with Indian regulators in recent weeks over contentious new security rules that require...Read More
CNCSoft-B v1.0.0.4 DOPSoft: versions prior to v4.0.0.82
