ICSA-18-277-01
·
Published 2021-11-02
·
View on CISA ICS-CERT ↗
WECON PI Studio (Update A)
CVSS 7.8
HIGH
Risk Summary
Successful exploitation of these vulnerabilities may allow execution of code and disclose sensitive information under the context of administrator.
Remediations
- WECON has verified these vulnerabilities but has not yet released an updated version. CISA is working with WECON and will update this advisory once an updated version is released.
Affected Vendors
WECON
Affected Products (2)
WECON
·
PI Studio HMI
<= 4.1.9
WECON
·
PI Studio
<= 4.2.125
Affected Sectors
Critical Manufacturing, Energy, Water and Wastewater Systems
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more