Emerson DeltaV (ICSA-19-010-01) – Product Used in the Energy Sector

The NCCIC has published an advisory on an authentication bypass vulnerability in Emerson DeltaV. Multiple versions of this product are affected. Successful exploitation of this vulnerability could allow an attacker to shut down a service, resulting in a denial of service. Emerson recommends users to patch affected products. The NCCIC also advises on a series of mitigating measures for this vulnerability. Read the full advisory at NCCIC/ICS-CERT.