Risk Summary
Successful exploitation of these vulnerabilities could allow an attacker to retrieve credentials without authentication.
CVEs (2)
Remediations
- Dingtian has not responded to requests to work with CISA to mitigate these vulnerabilities. Users of affected versions of Dingtian DT-R002 are invited to contact Dingtian customer support for additional information.
- The researchers recommend the following to help reduce risk:
- Restrict access to HTTP (TCP/80), and the Dingtian Protocol on (UDP/60000) and (UDP/60001).
Affected Vendors
Dingtian
Affected Products (1)
Dingtian
·
DT-R002
vers:all/*
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more