all InfoSec news
Vulnerability Spotlight: Authentication bypass, use-after-free vulnerabilities found in a library for the µC/OS open-source operating system
Malware Analysis, News and Indicators - Latest topics malware.news
Kelly Leuschner of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered two vulnerabilities in a library for µC/OS, an open-source operating system developed by Micrium.
µC/OS is an embedded operating system that supports TCP/IP, USB, CAN bus and Modbus. The two vulnerabilities Talos discovered specifically exist in the operating system’s FTP server.
TALOS-2022-1680 (CVE-2022-41985) could allow an attacker to bypass the authentication protocol on the operating system, or cause a denial-of-service, by sending the targeted machine a specially crafted …
authentication authentication bypass bus bypass can bus cisco cisco talos embedded free library operating system spotlight system talos tcp usb use-after-free vulnerabilities vulnerability vulnerability spotlight