ICSA-22-097-02 · Published 2022-04-07 · View on CISA ICS-CERT ↗

ABB SPIET800 and PNI800

CVSS 7.5 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could cause the affect device to become unresponsive, resulting in a denial-of-service condition and requiring a manual reboot.

CVEs (3)

CVE-2021-22285 CVE-2021-22286 CVE-2021-22288

Remediations

SPIET800: Update to Version A_C or later (planned Q2 2022)
PIN80: Update to Version B_0 or later (planned Q2 2022)
ABB advises users to review their installations to determine if they are using an impacted product as listed above.
Please see ABB Symphony Plus advisory and ABB Cybersecurity alerts portal for more information.

Affected Vendors

ABB

Affected Products (2)

ABB · PNI800 <=A_B

ABB · SPIET800 <=A_B

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more