Vulnerabilities
ConnectWise security issue results in urgent certificate rotation
ConnectWise is updating its digital signing certificates used in ConnectWise ScreenConnect, Automate, and RMM due to security concerns over how ScreenConnect handled certain configuration data in earlier versions.
The company stated that its current advisory is unrelated to the earlier news that a nation-state actor had compromised ScreenConnect cloud instances of some ConnectWise customers.
ConnectWise customers using on-premises versions of ScreenConnect or Automate are urged to ensure the update has been deployed by June 13 at 8:00 p.m. Updates for ScreenConnect, Automate, and RMM cloud instances will be deployed automatically, and customers need to validate that their agents are running the latest version before the June 13 deadline. Failure to update may result in disruptions or degraded experience, and leave systems vulnerable to the noted security risks.
ICS Security Patch Day includes maximum severity flaw
On June 10, a number of industrial control system (ICS) vendors, including Siemens and Schneider Electric, released security updates for their products.
Siemens’ advisory included a report on multiple vulnerabilities in Palo Alto Networks PAN-OS affecting its RUGGEDCOM APE1808 devices. The issue is rated with a maximum CVSS score of 10 out of 10.
Other critical vulnerabilities, ranging from CVSS score of 9.8 to 10, affect:
- RUGGEDCOM APE1808 devices
- Energy services using Elspec G5DFR
- RUGGEDCOM ROX II
- Certain versions of SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP
Schneider Electric addressed medium to high-severity vulnerabilities in Modicon controllers and the EVLink WallBox electric vehicle charging station. The third-party real-time operating system powering Insight Home and Insight Facility products have reached end of life, but mitigations are available to reduce the risk of exploitation.
Given current geopolitical context, ICS systems are an attractive target for hacktivists and nation-state threat actors. We recommend applying the latest updates to these products as soon as possible.
