The NCCIC has published an advisory on a type confusion vulnerability in Omron CX-One CX-Protocol. Versions 2.0 and prior are affected. Successful exploitation of the vulnerability could allow an attacker to execute code under the privileges of the application. Omron has released an updated version of CX-One to address the vulnerability. The NCCIC also advises on a series of mitigating measures for this vulnerability. Read the full advisory at NCCIC/ICS-CERT.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!