Rewterz

Rewterz Threat Advisory – CVE-2019-1784 – Cisco NX-OS Software Command Injection Vulnerability

July 18, 2019
Rewterz

Rewterz Threat Alert – Hard Pass: Declining APT34’s Invite to Join Their Professional Network

July 19, 2019

Rewterz Threat Advisory – CVE-2019-7590 – Johnson Controls exacqVision Server Vulnerability

Severity

Medium

Analysis Summary

Some services have an unquoted service path. If an authenticated user is able to insert code in the system root path, that code can be executed during the application startup.

Impact

Unquoted Search Path or Element

Affected Vendors

Exacq Technologies

Affected Products

exacqVision server Versions 9.6 and 9.8

Remediation

Users should upgrade to the latest product, Version 19.03

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.