Several major industrial control system (ICS) vendors have published security advisories in response to the NicheStack vulnerabilities, which have been dubbed INFRA:HALT
NicheStack, a TCP/IP stack utilized by numerous operational technology (OT) vendors, was determined to have 14 vulnerabilities, according to Forescout Research Labs and JFrog Security Research. The vulnerabilities can be exploited for remote code execution, TCP spoofing, collecting information, denial of service (DoS) attacks, and DNS cache poisoning, with the bulk of them receiving critical and high severity ratings.
To Read More: securityweek
For more such updates follow us on Google News ITsecuritywire News.