ICSA-17-313-01
·
Published 2018-07-24
·
View on CISA ICS-CERT ↗
AutomationDirect CLICK, C-More, C-More Micro, Do-more Designer, GS Drives, SL-Soft SOLO, DirectSOFT (Update B)
CVSS 6.7
MEDIUM
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the system.
CVEs (1)
Remediations
- CLICK Programming Software: Version 2.11 available at:
- C-more Programming Software: Version 6.32 available at:
- C-more Micro Programming Software: Version 4.21 available at:
- Do-more Designer Software: Version 2.2.1 available at:
- GS Drives: Version 4.0.7 available at:
- SL-Soft SOLO Configuration software: Version 1.1.0.6 available at:
- DirectSOFT: Versions 6.2 available at:
Affected Vendors
Automation Direct
Affected Products (7)
Automation Direct
·
CLICK Programming Software (Part Number C0-PGMSW)
<= 2.10
Automation Direct
·
SL-SOFT SOLO Temperature Controller Configuration Software (Part Number SL-SOFT)
<= 1.1.0.5
Automation Direct
·
C-More Micro (Part Number EA-PGMSW)
<= 4.20.01.0
Automation Direct
·
DirectSOFT Programming Software
<= 6.1
Automation Direct
·
C-More Programming Software (Part Number EA9-PGMSW
<= 6.30
Automation Direct
·
Do-more Designer Software (Part Number DM-PGMSW)
<= 2.0.3
Automation Direct
·
GS Drives Configuration Software (Part Number GSOFT)
<= 4.0.6
Affected Sectors
Commercial Facilities, Critical Manufacturing, Information Technology
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more