ICSA-20-345-02
·
Published 2020-12-10
·
View on CISA ICS-CERT ↗
Host Engineering H2-ECOM100 Module
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of this vulnerability could lead to a denial-of-service condition, forcing an operator to manually restart the device.
CVEs (1)
Remediations
- Host Engineering recommends users update affected products in the field by using the Live Update in its NetEdit3 software. Host Engineering recommends that if the affected products cannot be updated, disabling the web server serves as a workaround.
Affected Vendors
Host Engineering
Affected Products (6)
Host Engineering
·
H4-ECOM100 Module
<= 4.0.2148
Host Engineering
·
Hardware Version 8x
<= 5.0.1043
Host Engineering
·
Hardware Version 9x
<= 5.0.149
Host Engineering
·
Hardware Version 7x
<= 4.1.113
Host Engineering
·
Hardware Versions 5x and prior
<= 4.0.2148
Host Engineering
·
Hardware Versions 6x and prior with
<= 4.0.348
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more