ICS-CERT has released an advisory on a ProMinent MultiFLEX M10a Controller vulnerability. All versions of MultiFLEX M10a Controller web interface are affected. Successful exploitation of these vulnerabilities could allow an attacker to bypass protection mechanisms, assume the identity of authenticated users, and change the device configuration. ProMinent has not provided mitigations for these vulnerabilities. ICS-CERT recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. ICS-CERT.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!