Risk Summary
Successful exploitation of these vulnerabilities could allow an attacker to achieve local privilege escalation or restart a controller, resulting in a denial-of-service condition.
CVEs (2)
Remediations
- DeltaV DCS: Versions 13.3.1, 14.LTS, 14.FP1, 14.FP2, and R6
- Software patches are available to users with access to the Guardian Support Portal (login required). Please refer to the Knowledge Base Article NK-2100-0497 (DSN21008) on the Guardian Support Portal for more information.
- To limit exposure to these and other vulnerabilities, Emerson recommends DeltaV systems and related components be deployed and configured as described in the DeltaV Security Manual, which can be found in Emerson's Guardian Support Portal (login required).
Affected Vendors
Emerson
Affected Products (1)
Emerson
·
DeltaV Distributed Control System Controllers and Workstations
vers:all/*
Affected Sectors
Chemical, Critical Manufacturing, Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more