Flaws

Critical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems – Go Health Pro

by
Critical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems – Go Health Pro

Mar 19, 2025Ravie LakshmananVulnerability / Network Security Cybersecurity researchers have disclosed details of two critical flaws impacting mySCADA myPRO, a Supervisory Control and Data Acquisition (SCADA) system used in operational technology (OT) environments, that could allow malicious actors to take control of susceptible systems. “These vulnerabilities, if exploited, could grant unauthorized access to industrial control … Read more

Hidden flaws exist in millions of RSA digital certificates – Go Health Pro

by
Hidden flaws exist in millions of RSA digital certificates – Go Health Pro

Millions of the cryptographic digital certificates that secure internet communications and software updates have serious flaws that can be exploited, a presentation at the Keyfactor Tech Days conference in Miami last week demonstrated.”You stand up a web server, your customers come to you, a little lock pops up,” Keyfactor Chief Security Officer Chris Hickman told … Read more

Bluetooth Flaws Open Devices To Impersonation Attacks – Go Health Pro

by
Bluetooth Flaws Open Devices To Impersonation Attacks – Go Health Pro

Updated on May 21, 2021, 1:30pm to include a statement from Cradlepoint Serious security vulnerabilities have been found in  Bluetooth Core and Mesh Profile Specifications, which allow hackers to impersonate legitimate devices and carry on Man-in-the-Middle(MITM) attacks. Researchers from Agence nationale de la sécurité des systèmes d’information (ANSSI) disclosed several vulnerabilities in the two Bluetooth specifications … Read more

Mongoose ODM critical RCE flaws detailed, PoC exploits revealed – Go Health Pro

by
Mongoose ODM critical RCE flaws detailed, PoC exploits revealed – Go Health Pro

Two critical flaws in the open-source Mongoose Object Data Modeling (ODM) library for MongoDB and Node.js, along with proof-of-concept (PoC) exploits for both vulnerabilities, were detailed in a blog post by OPSWAT on Thursday.  The flaws are tracked as CVE-2024-53900 and CVE-2025-23061 and have critical CVSS 3 scores of 9.1 and 9.0, respectively.CVE-2024-53900, which was … Read more

New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

by
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

Feb 18, 2025Ravie LakshmananVulnerability / Network Security Two security vulnerabilities have been discovered in the OpenSSH secure networking utility suite that, if successfully exploited, could result in an active machine-in-the-middle (MitM) and a denial-of-service (DoS) attack, respectively, under certain conditions. The vulnerabilities, detailed by the Qualys Threat Research Unit (TRU), are listed below – CVE-2025-26465 … Read more

x