Triangle Research Nano-10 PLC Improper Input Validation

CVSS 7.8 HIGH

CVEs (1)

CVE-2013-5741

According to TRi Inc., the Nano-10 PLC's operating system firmware cannot be upgraded in the field. Customers are encouraged to contact TRi Inc. to return the affected PLCs for an r82 firmware upgrade to resolve this vulnerability. In addition, firewall rules should be used to deny Port 502/TCP traffic from traversing business/corporate networks to the control systems networks.

TRi Inc.

TRi Inc. · Nano-10 PLC firmware <r82

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.