Emerson DeltaV Wireless I/O Card Open SSH Port Vulnerability

CVSS 5.0 MEDIUM

CVEs (1)

CVE-2016-9347

Emerson released the solution for this vulnerability in their Guardian Support Knowledge Base Article NK-1500-0152 dated September 30, 2016 (hotfix bundle ‘DeltaV_133_WIOC_02_CSS’). The provided fix disables the SSH port that is always available in the WIOC running v13.3 original firmware.
In order to limit exposure to these and other vulnerabilities, Emerson recommends that users deploy and configure DeltaV systems and related components as described in the following documents: DeltaV Security Manual (http://www2.emersonprocess.com/siteadmincenter/PM%20DeltaV%20Documents/Manuals/CS_DeltaV_Security_Manual-TOC%20only.pdf)
In order to limit exposure to these and other vulnerabilities, Emerson recommends that users deploy and configure DeltaV systems and related components as described in the following documents: Emerson’s Wireless Security Whitepaper (http://www2.emersonprocess.com/siteadmincenter/PM%20Central%20Web%20Documents/Emerson%20Wireless%20Security.pdf)

Emerson

Emerson · SE4801T0X Redundant Wireless I/O Card 13.3

Emerson · SE4801T1X Simplex Wireless I/O Card 13.3

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.