Rockwell Automation vulnerability

Your review has been sent successfully

2833

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

24 February, 2020

● Critical

2020-950

Transportation - Water and Utilities

Description:

A vulnerability has been discovered in the following Rockwell Automation products:

Threats:

Attacker could exploit the vulnerability and execute arbitrary code remotely.

Best practice and Recommendations:

To reduce the effects of the vulnerability, please follow the following instructions :

Disable the Remote Diagnostics if there is no need to use it, if need be to use it, be sure to use the firewall to block all affected ports.
Minimize connecting the devices and the systems to the Internet .
When accessing remote devices and systems is required, use VPNs, ensure they are up-to-date and free from vulnerabilities.
For more information:
https://idp.rockwellautomation.com/adfs/ls/idpinitiatedsignon.aspx?RelayState=RPID%3Drockwellautomation.custhelp.com%26RelayState%3D%2Fapp%2Fanswers%2Fdetail%2Fa_id%2F1093421

Last updated at 24 February, 2020