Number: AV22-148
Date: 24 March 2022

On 24 March 2022 ICS-CERT published an ICS Advisory to highlight vulnerabilities in the following products:

  • CENTUM CS 3000 (Including CENTUM CS 3000 Entry Class) – versions R3.08.10 to R3.09.00
  • CENTUM VP (Including CENTUM VP Entry Class) – multiple versions
  • Exaopc – versions R3.72.00 to R3.79.00

Exploitation of these vulnerabilities could result in the suppression of alarms, reading or writing of files, denial of service, or arbitrary code execution.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

ICS Advisory (ICSA-22-083-01)
 



Source link