← Back to home
ICSA-23-355-01  ·  Published 2023-12-21  ·  View on CISA ICS-CERT ↗

FXC AE1021/AE1021PE

CVSS 8.0 HIGH CISA KEV — Known Exploited

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to achieve remote code execution on the device via NTP server settings.

CVEs (1)

Remediations

  • FXC released the following versions to address this vulnerability:
  • AE1021PE firmware: version 2.0.10.
  • AE1021 firmware: version 2.0.10.
  • FXC recommends users apply the following settings:
  • Reset "Factory setting" and change the default management screen login password.
  • For more information, see FXC's publication.
  • For more information, see JPCERT/CC's security advisory.

Affected Vendors

FXC

Affected Products (2)

FXC · AE1021PE firmware <=2.0.9
FXC · AE1021 firmware <=2.0.9

Affected Sectors

Information Technology, Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more