ICSA-24-270-01 · Published 2024-09-26 · View on CISA ICS-CERT ↗

Advantech ADAM-5550

CVSS 8.8 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow a remote attacker to intercept the easily decodable credentials of a legitimate user to gain full access to the device and could plant malicious code on the web page of the device.

CVEs (2)

CVE-2024-37187 CVE-2024-38308

Remediations

ADAM-5550 is currently being phased out, and Advantech strongly recommends all ADAM-5550 users upgrade to ADAM-5630 firmware version 2.5.2 or higher.

Affected Vendors

Advantech

Affected Products (1)

Advantech · Advantech ADAM 5550 vers:all/*

Affected Sectors

Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more