New Critical Operational Technology Vulnerabilities Found on NicheStack

1.0Forescouthttps://www.forescout.comForescout Research - Vedere Labshttps://www.forescout.com/blog/author/forescout-research-labs/New Critical Operational Technology Vulnerabilities Found on NicheStack – Mitigation Advised - Forescoutrich600338<blockquote class="wp-embedded-content" data-secret="suJL9qs2tD"><a href="https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/">New Critical Operational Technology Vulnerabilities Found on NicheStack – Mitigation Advised</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/embed/#?secret=suJL9qs2tD" width="600" height="338" title="“New Critical Operational Technology Vulnerabilities Found on NicheStack – Mitigation Advised” — Forescout" data-secret="suJL9qs2tD" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script type="text/javascript"> /* <![CDATA[ */ /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); //# sourceURL=https://www.forescout.com/wp-includes/js/wp-embed.min.js /* ]]> */ </script> https://www.forescout.com/wp-content/uploads/2021/07/FORE0028-INFRA-HALT_-Blog-Header-v2_Social-Card_1200x628.png50012618Forescout Research Labs and JFrog Security Research have discovered a set of 14 new vulnerabilities affecting the NicheStack TCP/IP stack, which we are collectively calling INFRA:HALT. The new vulnerabilities allow for remote code execution, denial of service, information leak, TCP spoofing, or DNS cache poisoning. NicheStack is used in Operational Technology (OT) devices commonly found in several critical […]