You are here

PEPPERL+FUCHS WirelessHART-Gateways (ICSA-19-073-03)

PEPPERL+FUCHS WirelessHART-Gateways (ICSA-19-073-03)

Created: Friday, March 15, 2019 - 11:18
Categories:
Cyber Security

The NCCIC has published an advisory on a path traversal vulnerability in PEPPERL+FUCHS WirelessHART-Gateways. All WHA-GW-* products are affected. Successful exploitation of this vulnerability could allow access to files and restricted directories stored on the device through the manipulation of file parameters. PEPPERL+FUCHS reports that affected users with WHA-GW-*-ETH devices should upgrade to firmware Version 03.00.08. Affected users with WHA-GW-*-ETH.EIP devices should upgrade to firmware Version 02.00.01. The NCCIC also recommends a series of mitigating measures for this vulnerability. Read the advisory at NCCIC/ICS-CERT.