19 matches found
EUVD-2023-24152
Malicious code in bioql PyPI...
EUVD-2023-24154
Malicious code in bioql PyPI...
CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
The vulnerability of microprogrammed software in medical devices—the Illumina Universal Copy Service—allows a perpetrator to disclose protected information, upload and execute code with enhanced privileges.
The vulnerability of microprogrammed medical devices with the Illumina Universal Copy Service is related to errors in privilege management. Exploiting this vulnerability can allow a malicious actor to disclose protected information, upload and execute code with elevated privileges...
The vulnerability of microprogrammed medical devices’ Illumina Universal Copy Service, related to the reliance on open IP addresses, allows a intruder to intercept network traffic and remotely send arbitrary commands.
The vulnerability of microprogrammed medical devices with the Illumina Universal Copy Service is related to their reliance on open IP addresses. Exploiting this vulnerability allows a malicious actor to remotely intercept network traffic and also to send arbitrary commands remotely...
CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments
The U.S. Cybersecurity and Infrastructure Security Agency CISA has released an Industrial Control Systems ICS medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service UCS software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iS...
CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
Code injection
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
Illumina Universal Copy Service
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Illumina Equipment: Universal Copy Service UCS Vulnerabilities: Binding to an Unrestricted IP Address, Execution with Unnecessary Privileges 2. RISK EVALUATION Successful exploitation of these...
CVE-2023-1968 CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1968
Illumina UCS (Universal Copy Service) CVE-2023-1968 affects Illumina instruments using UCS v2.x. Vulnerability arises from binding to an unrestricted IP address, allowing an unauthenticated attacker to listen on all IPs and potentially eavesdrop on network traffic and remotely transmit commands. ...
CVE-2023-1968 CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1966
Illumina Universal Copy Service (UCS) vulnerability CVE-2023-1966 affects UCS v1.x and v2.x, permitting an unauthenticated attacker to upload and execute code at the operating system level. Affects multiple Illumina instruments/control software (e.g., iScan, iSeq 100, MiSeq/MiSeqDx, NextSeq, Nova...
CVE-2023-1966 CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
Illumina Universal Copy Service 安全漏洞
Illumina Universal Copy Service is a universal copy service from Illumina, Inc. A security vulnerability exists in Illumina Universal Copy Service v1.x version, v2.x version. An unauthenticated attacker could remotely upload and execute code at the operating system level...
CISA Releases One Industrial Control Systems Medical Advisory
CISA released one Industrial Control Systems Medical ICS medical advisory on April 27, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS medical...
PT-2023-2564 · Illumina · Illumina Universal Copy Service
Name of the Vulnerable Software and Affected Versions: Illumina Universal Copy Service versions 2.x Description: The issue is related to the binding of Illumina Universal Copy Service to an unrestricted IP address, allowing an unauthenticated malicious actor to use the service to listen on all IP...
Google Begins Removing Play Store Apps Misusing Android Accessibility Services
Due to rise in malware and adware abusing Android accessibility services, Google has finally decided to take strict steps against the apps on its app platform that misuse this feature. Google has emailed Android app developers informing them that within 30 days, they must show how accessibility...