A new vulnerability, CVE-2024-42195, has been identified in HCL DevOps Deploy and HCL Launch, enabling users to embed arbitrary HTML tags in the Web UI, causing potential sensitive information disclosure. HCL Software has urged users to update their systems to safeguard against exploitation. No workarounds or alternative mitigations are currently available.
Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity highlighted the need for better tracking of devices and their vulnerability to cyber threats. They noted
