ICSA-25-114-04
·
Published 2025-05-06
·
View on CISA ICS-CERT ↗
Nice Linear eMerge E3
CVSS 9.8
CRITICAL
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary OS commands.
CVEs (1)
Remediations
- Nice did not indicate if/when a patch would be developed. Please see Nice's E3-Bulletin for the latest information on product security.
- Nice also recommends the following defensive measures to minimize the risk of exploitation of this vulnerability:
- Minimize network exposure of devices, ensuring they are not accessible from the internet.
- Place the devices behind firewalls and isolate them from other networks.
- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Keep your VPNs as up-to-date as possible.
- Change default credentials on the device.
- Change the default IP address of the device.
- See Nice's Telephone Entry Bulletin for additional information.
- Users should contact Nice with any questions.
Affected Vendors
Nice
Affected Products (1)
Nice
·
Linear eMerge E3
<=1.00-07
Affected Sectors
Commercial Facilities
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more