ICSA-15-148-01
·
Published 2025-06-06
·
View on CISA ICS-CERT ↗
IDS RTU 850 Directory Traversal Vulnerability
CVSS 6.8
MEDIUM
CVEs (1)
Remediations
- The communication modules can be protected against the described vulnerability by disabling the internal web server. This can be made via configuration settings.
- The communication modules “NC854” and “NC856” were discontinued in 2009 and replaced by newer communication modules. Because both communication modules are past end of life, no update or patch will be produced.
Affected Vendors
IDS
Affected Products (2)
IDS
·
NC854
vers:all/*
IDS
·
NC856
vers:all/*
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more