← Back to home
ICSA-20-254-03  ·  Published 2020-09-10  ·  View on CISA ICS-CERT ↗

HMS Networks Ewon Flexy and Cosy

CVSS 2.3 LOW

Risk Summary

Successful exploitation of this vulnerability could allow attackers to retrieve limited confidential information.

CVEs (1)

Remediations

  • Update firmware to the latest version available.
  • Use secure Talk2M cloud solutions to create a VPN tunnel connecting Ewon devices remotely.
  • Do not publicly expose the WAN IP of your devices on the internet.
  • Use the WAN firewall, which is built into all Ewon devices.

Affected Vendors

HMS Networks

Affected Products (1)

HMS Networks · Flexy and Cosy < 14.1

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy, and Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more