Novakon’s industrial control systems, specifically their HMIs, are affected by critical vulnerabilities that could allow remote code execution without authentication. The vendor has not yet released patches or responded to security concerns, raising fears of potential exploitation in critical infrastructure settings. #Novakon #CyberDanube
Keypoints
- Novakon’s HMIs are impacted by five significant security vulnerabilities.
- The vulnerabilities include buffer overflows, directory traversal issues, and weak authentication.
- Exploiting these flaws could enable remote attackers to execute high-privilege code.
- Novakon has not responded to security researchers’ reports or provided patches.
- The devices are used in critical infrastructure, increasing potential risk if compromised.
Read More: https://www.securityweek.com/unpatched-vulnerabilities-expose-novakon-hmis-to-remote-hacking/