[Control systems] IDEC security advisory

From: Canadian Centre for Cyber Security

Number: AV22-009
Date: 6 January 2022

On 6 January 2022 ICS-CERT published an ICS Advisory to highlight vulnerabilities in the following products:

  • FC6A MICROSmart All-in-One CPU Module – version 2.32 and prior
  • FC6B MICROSmart All-in-One CPU Module – version 2.31 and prior
  • FC6A MICROSmart Plus CPU Module – version 1.91 and prior
  • FC6B MICROSmart Plus CPU Module – version 2.31 and prior
  • FT1A Controller SmartAXIS Pro/Lite – version 2.31 and prior
  • WindLDR – version 8.19.1 and prior
  • WindEDIT Lite – version 1.3.1 and prior
  • Data File Manager – version 2.12.1 and prior

Exploitation of these vulnerabilities could allow an actor to obtain credentials.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

ICS Advisory (ICSA-22-006-03)
https://us-cert.cisa.gov/ics/advisories/icsa-22-006-03

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: