41 matches found
EUVD-2023-24152
Malicious code in bioql PyPI...
EUVD-2023-24154
Malicious code in bioql PyPI...
CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Cybersecurity researchers have uncovered firmware security vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that, if successfully exploited, could permit attackers to brick or plant persistent malware on susceptible devices. "The Illumina iSeq 100 used a very outdated...
The vulnerability of microprogrammed medical devices’ Illumina Universal Copy Service, related to the reliance on open IP addresses, allows a intruder to intercept network traffic and remotely send arbitrary commands.
The vulnerability of microprogrammed medical devices with the Illumina Universal Copy Service is related to their reliance on open IP addresses. Exploiting this vulnerability allows a malicious actor to remotely intercept network traffic and also to send arbitrary commands remotely...
The vulnerability of microprogrammed software in medical devices—the Illumina Universal Copy Service—allows a perpetrator to disclose protected information, upload and execute code with enhanced privileges.
The vulnerability of microprogrammed medical devices with the Illumina Universal Copy Service is related to errors in privilege management. Exploiting this vulnerability can allow a malicious actor to disclose protected information, upload and execute code with elevated privileges...
CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments
The U.S. Cybersecurity and Infrastructure Security Agency CISA has released an Industrial Control Systems ICS medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service UCS software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iS...
CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments
The U.S. Cybersecurity and Infrastructure Security Agency CISA has released an Industrial Control Systems ICS medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service UCS software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iS...
CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
Code injection
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...
Illumina Universal Copy Service
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Illumina Equipment: Universal Copy Service UCS Vulnerabilities: Binding to an Unrestricted IP Address, Execution with Unnecessary Privileges 2. RISK EVALUATION Successful exploitation of these...
CVE-2023-1968 CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1968 CVE-2023-1968
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications...
CVE-2023-1968
Illumina UCS (Universal Copy Service) CVE-2023-1968 affects Illumina instruments using UCS v2.x. Vulnerability arises from binding to an unrestricted IP address, allowing an unauthenticated attacker to listen on all IPs and potentially eavesdrop on network traffic and remotely transmit commands. ...
CVE-2023-1966
Illumina Universal Copy Service (UCS) vulnerability CVE-2023-1966 affects UCS v1.x and v2.x, permitting an unauthenticated attacker to upload and execute code at the operating system level. Affects multiple Illumina instruments/control software (e.g., iScan, iSeq 100, MiSeq/MiSeqDx, NextSeq, Nova...
CVE-2023-1966 CVE-2023-1966
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an attacker to change settings, configurations, software, or...