ICSA-24-254-02
·
Published 2024-09-10
·
View on CISA ICS-CERT ↗
iniNet Solutions SpiderControl SCADA Web Server
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to log in or execute arbitrary code.
CVEs (1)
Remediations
- IniNet Solutions has released a new version of SpiderControl SCADA Server, (3.2.2), to address this issue. It can be found at the following location: https://spidercontrol.net/download/download-area-2/?lang=en
- IniNet Solutions reminds users that the webserver is designed to be used in a protected environment. IniNet Solutions GmbH recommends that users never connect control system software directly to the Internet. If a user must connect to the Internet, IniNet Solutions GmbH recommends using a managed infrastructure to do so.
Affected Vendors
iniNet Solutions GmbH
Affected Products (1)
iniNet Solutions GmbH
·
SpiderControl SCADA Web Server
<=v2.09
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more