ICSMA-23-117-01 · Published 2023-04-28 · View on CISA ICS-CERT ↗

Illumina Universal Copy Service

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to take any action at the operating system level. A threat actor could impact settings, configurations, software, or data on the affected product; a threat actor could interact through the affected product via a connected network.

CVEs (2)

CVE-2023-1968 CVE-2023-1966

Remediations

Illumina recommends using the UCS Vulnerability Instructions Guide based on the user�s specific system configuration to mitigate the vulnerabilities. Illumina recommends users read the instructions before downloading any software.

Affected Vendors

Illumina

Affected Products (13)

Illumina · iScan Control Software 4.0.0

Illumina · iScan Control Software 4.0.5

Illumina · iSeq 100 vers:all/*

Illumina · MiniSeq Control Software >= 2.0

Illumina · MiSeq Control Software 4.0

Illumina · MiSeqDx Operating Software >= 4.0.1

Illumina · NextSeq 500/550 Control Software 4.0

Illumina · NextSeq 550Dx Control Software 4.0

Illumina · NextSeq 550Dx Operating Software >= 1.0.0 | <= 1.3.1

Illumina · NextSeq 550Dx Operating Software >= 1.3.3

Illumina · NextSeq 1000/2000 Control Software <= 1.4.1

Illumina · NovaSeq 6000 Control Software <= 1.7

Illumina · NovaSeq Control Software 1.8

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more