The new vulnerability threatens another solar wind-style safety disaster


The Open Automation Software (OAS) platform recently discovered eight new vulnerabilities that, if leveraged, could have caused another supply chain security disaster.

According to Talos, Cisco’s Cybersecurity Arm, errors include two high-intensity vulnerabilities – CVE-2022-26833 (Intensity Score 9.4) and CVE-2022-26082 (Intensity Score 9.1) – which can enable threatening actors to configure. Platform for creating new security groups and running arbitrary code.

Source link