← Back to home
ICSA-17-040-01  ·  Published 2017-02-09  ·  View on CISA ICS-CERT ↗

Hanwha Techwin Smart Security Manager

CVSS 7.5 HIGH

Risk Summary

ATTENTION: Remotely exploitableVendor: Hanwha TechwinEquipment: Smart Security ManagerVulnerabilities: Remote Code Execution

CVEs (2)

Remediations

  • Hanwha Techwin has released a patch for v1.4 and v1.5. Customers using v1.4 and v1.5 need to upgrade using Patch_SSMv1.5_or_1.4_for_Cert_Vulnerability.
  • Customers using v1.3 and prior need to upgrade using patch SSM-TS v1.60.0.
  • Patches and updates can be found at this location:

Affected Vendors

Hanwha Techwin

Affected Products (1)

Hanwha Techwin · Smart Security Manager <= 1.5

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more