“[A] successful attack may lead to full network compromise, since Azure Defender For IoT is configured to have a TAP (Terminal Access Point) on the network traffic,” the team says in a SentinelLabs blog post. “Access to sensitive information on the network could open a number of sophisticated attacking scenarios that could be difficult or impossible to detect.” All the vulnerabilities have a wide scope and can cause problems for both cloud and on-premises systems. As for the specific bugs, their Common Vulnerabilities and Exposures (CVE) numbers are as follows:
CVE-2021-42310 CVE-2021-42312 CVE-2021-37222 CVE-2021-42313 CVE-2021-42311
Microsoft Fixes
The company already reported the problems to Microsoft in June 2021 and says the company issued security patches for the vulnerabilities. SentinalLabs is now disclosing publicly to urge customers of Azure Defender for IoT to update their systems to protect them. “Microsoft has released security updates to address these critical vulnerabilities,” the researchers add in the blog post. “Users are encouraged to take action immediately.” According to the team, the flaws seem to have not been exploited in the wild. Microsoft spoke to VentureBeat about the vulnerabilities, saying security bugs “are serious issues we all face and that is why we partner with the industry and follow the Coordinated Vulnerability Disclosure (CVD) process to protect customers before vulnerabilities are public.” “We addressed the specific issues mentioned and we appreciate the finder working with us to ensure customers remain safe.” Tip of the day: Fast startup (a.k.a hiberboot, hybrid boot, hybrid shutdown) is a power setting that adjusts Windows’ behavior when it starts up and shuts down. Though it is unlikely fast startup will seriously harm your computer, there are a few reasons you might want to disable it by following our tutorial.