You are here

Emerson DeltaV Distributed Control System (ICSA-19-190-01) – Product Used in the Energy Sector

Emerson DeltaV Distributed Control System (ICSA-19-190-01) – Product Used in the Energy Sector

Created: Wednesday, July 10, 2019 - 16:12
Categories:
Cyber Security

The NCCIC has published an advisory on a use of hard-coded credentials vulnerability in Emerson DeltaV Distributed Control System. Versions 11.3.x and 12.3.x are affected. Successful exploitation of this vulnerability could allow an attacker to gain administrative access to DeltaV Smart Switches. Emerson recommends users patch affected products. The NCCIC also advises of a series of measures for mitigating this vulnerability. Read the advisory at CISA.