EUVD-2018-20470

Malware in sbrugna...

CVE-2018-8862

In ATI Systems Emergency Mass Notification Systems HPSS16, HPSS32, MHPSS, and ALERT4000 devices, an improper authentication vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms...

Authentication flaw

In ATI Systems Emergency Mass Notification Systems HPSS16, HPSS32, MHPSS, and ALERT4000 devices, an improper authentication vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms...

CVE-2018-8864

In ATI Systems Emergency Mass Notification Systems HPSS16, HPSS32, MHPSS, and ALERT4000 devices, a missing encryption of sensitive data vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms...

CVE-2018-8862

ATI Systems Emergency Mass Notification Systems (HPSS16, HPSS32, MHPSS, ALERT4000) are affected by CVE-2018-8862 due to an improper authentication vulnerability triggered by specially crafted radio transmissions that could remotely trigger false alarms. The issue arises in the authentication mech...

CVE-2018-8864

The CVE-2018-8864 entry applies to ATI Systems Emergency Mass Notification Systems (HPSS16, HPSS32, MHPSS, ALERT4000). The vulnerability is caused by missing encryption of sensitive data in radio transmissions, enabling a remote attacker to trigger false alarms. Affected components are the comman...

CVE-2018-8864

In ATI Systems Emergency Mass Notification Systems HPSS16, HPSS32, MHPSS, and ALERT4000 devices, a missing encryption of sensitive data vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms...

CVE-2018-8862

In ATI Systems Emergency Mass Notification Systems HPSS16, HPSS32, MHPSS, and ALERT4000 devices, an improper authentication vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms...

Vulnerability in San Francisco’s Public Safety Warning Sirens Fixed

Public emergency alert sirens, designed to both warn the masses of a crisis and direct them to safety, can be compromised by attackers who can take control of the system to broadcast false alarms. That is the conclusion of researchers at radio security firm Bastille, who released details of its...

Flaw in Emergency Alert Systems Could Allow Hackers to Trigger False Alarms

A serious vulnerability has been exposed in "emergency alert systems" that could be exploited remotely via radio frequencies to activate all the sirens, allowing hackers to trigger false alarms. The emergency alert sirens are used worldwide to alert citizens about natural disasters, man-made...

ATI Systems Emergency Mass Notification Systems

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION : Exploitable remotely. Vendor : Acoustic Technology, Inc. ATI Systems Equipment : ATI Emergency Mass Notification Systems Vulnerabilities : Improper Authentication, Missing Encryption of Sensitive Data. 2. RISK EVALUATION Successful exploitation of...