← Back to home
ICSA-23-096-03  ·  Published 2023-04-10  ·  View on CISA ICS-CERT ↗

JTEKT ELECTRONICS Kostac PLC Programming Software

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to disclose information or execute arbitrary code.

CVEs (3)

Remediations

  • JTEKT ELECTRONICS recommends users to download the following updates:
  • Version 1.6.10.0 and above
  • This version not only addresses the vulnerability, but also takes measures to prevent crafted project files from being opened. Project files saved with Version 1.6.9.0 or earlier can be re-saved with Version 1.6.10.0 or above to enable this tamper-proof feature. Project files saved with Version 1.6.10.0 or above cannot be opened with Version 1.6.9.0 or earlier.
  • For more information, see JTEKT ELECTRONICS’ Update Notice.

Affected Vendors

JTEKT ELECTRONICS CORPORATION

Affected Products (1)

JTEKT ELECTRONICS CORPORATION · JTEKT ELECTRONICS Kostac PLC Programing Software <= 1.6.9.0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more