[Control systems] ABB security advisory (AV22-394)

Number: AV22-394
Date: 15 July 2022

On 14 July 2022 ABB published a Cyber Security Cyber securityThe protection of digital information, as well as the integrity of the infrastructure housing and transmitting digital information. More specifically, cyber security includes the body of technologies, processes, practices and response and mitigation measures designed to protect networks, computers, programs and data from attack, damage or unauthorized access so as to ensure confidentiality, integrity and availability. Advisory to address a vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. in the following products:

• RMC-100 (Standard) - versions prior to 2105457-037
• RMC-100-LITE - versions prior to 2106229-011
• XIO - versions prior to 2106198-008
• XFC - versions prior to 2105805-016
• XRC - versions prior to 2105864-016
• uFLO - versions prior to 2105298-024
• UDC - versions prior to 2106177-007

Exploitation of this vulnerability could lead to unauthorized access and remote code execution.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

• ABB Cyber Security Advisory (9AKK108467A0927) (PDF)