OPW Fuel Management Systems SiteSentinel Integra and SiteSentinel iSite

Risk Summary

ATTENTION: Remotely exploitable/low skill level to exploit.

CVEs (2)

Remediations

• OPW considers this a critical issue that needs to be addressed immediately. They have issued “Service Bulletin 462” and a letter to users to inform them of the availability of free upgrades (firmware Version 17Q2.1) to mitigate these vulnerabilities.
• OPW recommends that users upgrade all affected systems even if they are already protected from exploitation by running off-line or located on a protected network.
• OPW has released instructions telling users how to update to the newest firmware version. For specific step-by-step instructions on how to save settings, backup database, and install the new firmware, see the upgrade procedure (M00-20-4438) at the following location:
• More information can also be found in the configuration guide:
• For additional assistance, users and distributors may call the technical service line at 877-OPW-TECH (877-679-8324). OPW has also dedicated an additional phone number specifically for addressing this issue: 312-244-0632. Users may also email [email protected] or contact their commercial district manager.

Affected Vendors

Affected Products (4)

Affected Sectors

Energy, Transportation Systems