ICSA-21-005-04 · Published 2021-01-05 · View on CISA ICS-CERT ↗

Red Lion Crimson 3.1

CVSS 7.5 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to create a denial-of-service condition, read and modify the database, and leak memory data.

CVEs (3)

CVE-2020-27279 CVE-2020-27285 CVE-2020-27283

Remediations

Red Lion recommends users update to build 3119.001 or later.

Affected Vendors

Red Lion, AutomationDirect

Affected Products (1)

Red Lion, AutomationDirect · Crimson 3.1 < 3119.001

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more