Wonderware SuiteLink Unallocated Unicode String Vulnerability

CVSS 5.0 MEDIUM

CVEs (1)

CVE-2012-3007

Invensys recommends the following mitigations: Apply security update patch to affected nodes. Upgrade to InTouch/Wonderware Application Server (IT 10.5, WAS 3.5) or later. Upgrade to DASABCIP 4.1 SP2 or DASSiDirect 3.0. Install DAServer Runtime Components Upgrade 3.0 SP2, 3.0 SP3 or higher for any DAServer, DI Object, or third-party DAServer installation. The Invensys security update patch can be found at the Wonderware download Web site.

Invensys

Invensys · Wonderware slssvc service <=54.x.x.x

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.