← Back to home
ICSA-14-198-01  ·  Published 2025-06-06  ·  View on CISA ICS-CERT ↗

Cogent DataHub Code Injection Vulnerability

CVSS 7.5 HIGH

CVEs (1)

Remediations

  • Cogent has fixed this vulnerability in Version 7.3.5 of DataHub. This is a free upgrade for any customer running V7.x. Cogent advises that customers running versions prior to V7.3.5 do one of the following
  • Upgrade to Cogent DataHub Version 7.3.5 available at: (http://www.cogentdatahub.com/Download_Software.html)
  • Disable the web server component in their Cogent DataHub installation
  • Configure their network security to block access to the Cogent DataHub web server from untrusted locations.

Affected Vendors

Cogent

Affected Products (1)

Cogent · Cogent DataHub <=V7.3.4

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more