Host Engineering Update
1664Warning Date
Severity Level
Warning Number
Target Sector
13 December, 2020
● High
2020-2191
Manufacturing
Description:
Host Engineering has released security update to address a vulnerability in the following products:
- H0-ECOM100 Module
- Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior
- Hardware Version 7x with Firmware Versions 4.1.113 and prior
- Hardware Version 9x with Firmware Versions 5.0.149 and prior
- H2-ECOM100 Module
- Hardware Versions 5x and prior with Firmware Versions 4.0.2148 and prior
- Hardware Version 8x with Firmware Versions 5.0.1043 and prior
- H4-ECOM100 Module
- Firmware Versions 4.0.2148 and prior
Threats:
Remote attacker could exploit these vulnerabilities by causing a denial of service (DoS).
Best practice and Recommendations:
Host Engineering recommends users update affected products in the field by using the Live Update in its NetEdit3 software. Host Engineering recommends that if the affected products cannot be updated, disabling the web server serves as a workaround.