← Back to home
ICSA-25-126-01  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Optigo Networks ONS NC600

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to establish an authenticated connection with the hard-coded credentials and perform OS command executions.

CVEs (1)

Remediations

  • Optigo Networks recommends users implement at least one of the following additional mitigations:
  • Use a dedicated NIC on the BMS computer and exclusively use the computer for connecting to OneView to manage your OT network configuration.
  • Set up a router firewall with a white list for the devices permitted to access OneView.
  • Connect to OneView via secure VPN.

Affected Vendors

Optigo Networks

Affected Products (1)

Optigo Networks · ONS NC600 >=4.2.1-084|<=4.7.2-330

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more