ICSA-21-026-01 · Published 2021-01-26 · View on CISA ICS-CERT ↗

Fuji Electric Tellus Lite V-Simulator and V-Server Lite

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to execute code under the privileges of the application.

CVE-2021-22637 CVE-2021-22655 CVE-2021-22653 CVE-2021-22639 CVE-2021-22641

Fuji Electric recommends updating to the current version v4.0.10.0. Both disks are required for updating. Login is required to download the files.
v4.0.10.0 Disk 1
v4.0.10.0 Disk 2

Fuji Electric

Fuji Electric · Tellus Lite V-Simulator < 4.0.10.0

Fuji Electric · V-Server Lite < 4.0.10.0

Critical Manufacturing

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.