Rewterz Threat Advisory – Microsoft MSHTML Remote Code Execution Vulnerability

September 7, 2021

Rewterz Threat Advisory – CVE-2021-3766 – Node.js Security Vulnerability

September 8, 2021

Rewterz Threat Advisory – ICS : Hitachi ABB Power Grids System Data Manager

September 8, 2021

Severity

High

Analysis Summary

CVE-2021-35526

The application does not encrypt backup files. A local operating system user can modify backup files, which may allow an attacker to overwrite system configuration files and gain privileges.

Impact

Exposure of Sensitive Data

Affected Vendors

Hitachi ABB Power Grids

Affected Products

SDM600: All versions prior to 1.2 FP2 HF6

Remediation

Refer to Cert-Cisa Advisory for the patch, upgrade, or suggested workaround information.

https://us-cert.cisa.gov/ics/advisories/icsa-21-250-02

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Microsoft Alerts on Node.js Exploitation in Malware Campaigns

ICS: Multiple Rockwell Automation ThinManager Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Microsoft MSHTML Remote Code Execution Vulnerability

Rewterz Threat Advisory – CVE-2021-3766 – Node.js Security Vulnerability

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.