ICSA-20-240-01 · Published 2020-08-27 · View on CISA ICS-CERT ↗

Red Lion N-Tron 702-W, 702M12-W

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access to sensitive information, execute system commands, and perform actions in the context of an attacked user.

CVEs (5)

CVE-2020-16210 CVE-2020-16206 CVE-2020-16208 CVE-2020-16204 CVE-2017-16544

Remediations

Red Lion's 702-W Series was discontinued in 2018 and cannot be updated. Red Lion recommends these products be used locally within a secure network.

Affected Vendors

Red Lion, AutomationDirect

Affected Products (2)

Red Lion, AutomationDirect · N-Tron 702M12-W vers:all/*

Red Lion, AutomationDirect · N-Tron 702-W vers:all/*

Affected Sectors

Commercial Facilities, Energy, Transportation Systems, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more