ICSA-21-021-03 · Published 2021-01-21 · View on CISA ICS-CERT ↗

Honeywell OPC UA Tunneller

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, remotely execute arbitrary code, or crash the device.

CVEs (4)

CVE-2020-27297 CVE-2020-27299 CVE-2020-27274 CVE-2020-27295

Remediations

Honeywell recommends upgrading Matrikon OPC UA Tunneller to Version 6.3.0.8233

Affected Vendors

Matrikon, Honeywell

Affected Products (1)

Matrikon, Honeywell · OPC UA Tunneller < 6.3.0.8233

Affected Sectors

Multiple Sectors

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more