Eaton ELCSoft Programming Software Memory Vulnerabilities

CVSS 7.3 HIGH

CVEs (2)

CVE-2016-4509 CVE-2016-4512

Eaton has released a revision that mitigates these vulnerabilities. The revision can be downloaded at (https://eatonfilesharing.box.com/s/r4ulykfay2x5nlai9pqijivdh1zyks98)
Eaton states the current firmware needs to be uninstalled prior to loading the update.

Eaton

Eaton · ELCSoft <=2.4.01

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.