GE released new firmware to mitigate an improper input validation vulnerability in its PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi, according to a report with NCCIC. Successful exploitation of this remotely exploitable vulnerability, discovered by Younes Dragoni of Nozomi Networks, could cause the device to reboot and change its state, causing the device to become unavailable.

Read More