Rewterz

Rewterz Threat Alert – APT Groups Kimsuky Konni targets SouthEast Asia

December 2, 2020
Rewterz

Rewterz Threat Advisory – Linux Kernel Privilege Escalation

December 2, 2020

Rewterz Threat Advisory – ICS: Schneider Electric EcoStruxure Operator Terminal Expert runtime

Severity

Medium

Analysis Summary

CVE-2020-7544

An improper privilege management vulnerability exists that could cause privilege escalation on the workstation when interacting directly with a driver installed by the runtime software of EcoStruxure Operator Terminal Expert.

Impact

  • Command execution
  • Loss of availability, confidentiality, and integrity of system

Affected Vendors

Schneider Electric

Affected Products

EcoStruxure Operator Terminal Expert

Remediation

Refer to ICS advisory for the complete list of affected products.

https://us-cert.cisa.gov/ics/advisories/icsa-20-336-01

Schneider Electric has prepared Version 3.1 Service Pack 1B of the EcoStruxure Operator Terminal Expert

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.