ICSA-24-023-01
·
Published 2024-01-23
·
View on CISA ICS-CERT ↗
APsystems Energy Communication Unit (ECU-C) Power Control Software
CVSS 8.8
HIGH
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to access sensitive data and execute specific commands and functions with full admin rights without authenticating.
CVEs (1)
Remediations
- APSystems has not responded to requests to work with CISA to mitigate this vulnerability. Users of the affected product are encouraged to contact APSystems support for additional information.
Affected Vendors
APsystems
Affected Products (5)
APsystems
·
Energy Communication Unit Power Control Software
C1.2.2
APsystems
·
Energy Communication Unit Power Control Software
v3.11.4
APsystems
·
Energy Communication Unit Power Control Software
W2.1.NA
APsystems
·
Energy Communication Unit Power Control Software
v4.1SAA
APsystems
·
Energy Communication Unit Power Control Software
v4.1NA
Affected Sectors
Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more