Electronic Design

Common Embedded Vulnerabilities, Part 1: Code Injection

Because many embedded systems have not historically been connected to networks, or since it was reasonable to expect that the devices would operate in a trusted environment, there’s been relatively ...
ITWire

MoAB spots another format string vulnerability

Mac OS X's Installer utility has a format string bug that can be triggered by maliciously crafted package file names, according to the Month of Apple Bugs project. "Under certain circumstances this ...
Infosecurity-magazine.com

Rapid7 Discusses SIGMA Spectrum Infusion Pump and WiFi Battery Vulnerabilities

On April 20, 2022, Rapid7 discovered vulnerabilities in two TCP/IP–enabled medical devices produced by Baxter Healthcare. The flaws, four in total, affected the company’s SIGMA Spectrum Infusion Pump ...
CSOonline

Broadcom UPnP implementation also contains critical vulnerability, researchers say

Security researchers from Croatia-based security firm DefenseCode claim to have found a critical remote code execution vulnerability in the UPnP (Universal Plug and Play) implementation developed by ...