VISAM Automation Base (VBASE) (Update A)

Published

2021-07-08 14:10:19 UTC

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-20-084-01 VISAM Automation Base (VBASE) that was published March 24, 2020, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for Relative Path Traversal, Incorrect Default Permissions, Inadequate Encryption Strength, Insecure Storage of Sensitive Information, and Stack-based Buffer Overflow vulnerabilities in VISAM VBASE automation platform.