← Back to home
ICSA-20-287-04  ·  Published 2020-10-13  ·  View on CISA ICS-CERT ↗

Fieldcomm Group HART-IP and hipserver

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could crash the device being accessed; a buffer overflow condition may allow remote code execution.

CVEs (1)

Remediations

  • Fieldcomm Group recommends users restrict access to the computers or devices running the software. Users of hipserver should immediately upgrade source code to v3.7.0 or later. For technical support, please visit https://support.fieldcommgroup/ and file a support ticket. For more information, please see the Fieldcomm Group security page.

Affected Vendors

Fieldcomm Group

Affected Products (2)

Fieldcomm Group · hipserver 3.6.1
Fieldcomm Group · HART-IP Developer kit 1.0.0.0

Affected Sectors

Commercial Facilities, Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more