ICSA-22-291-01 · Published 2022-10-18 · View on CISA ICS-CERT ↗

Advantech R-SeeNet

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could result in an unauthorized attacker remotely deleting files on the system or allowing remote code execution.

CVEs (3)

CVE-2022-3387 CVE-2022-3386 CVE-2022-3385

Remediations

Advantech recommends users update R-SeeNet to Version 2.4.21 or later.

Affected Vendors

Advantech

Affected Products (2)

Advantech · R-SeeNet <= 2.4.19

Advantech · R-SeeNet <= 2.4.17 (CVE-2022-3386 and CVE-2022-3385 only)

Affected Sectors

Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more