Number: AV22-656
Date: 23 November 2022
On 22 November 2022, ICS-CERT published an ICS Advisory to address a vulnerability in the following products:
- UC-8100A-ME-T System Image – versions v1.0 to v1.6
- UC-2100 System Image – versions v1.0 to v1.12
- UC-2100-W System Image – versions v1.0 to v 1.12
- UC-3100 System Image – versions v1.0 to v1.6
- UC-5100 System Image – versions v1.0 to v1.4
- UC-8100 System Image – versions v3.0 to v3.5
- UC-8100-ME-T System Image – versions v3.0 and v3.1
- UC-8100A-ME-T System Image – versions v1.0 to v1.6
- UC-8200 System Image – version v1.0 to version v1.5
- AIG-300 System Image – version v1.0 to version v1.4
- UC-8410A with Debian 9 System Image – versions v4.0.2 and v4.1.2
- UC-8580 with Debian 9 System Image – versions v2.0 and v2.1
- UC-8540 with Debian 9 System Image – versions v2.0 and v2.1
- DA-662C-16-LX (GLB) System Image – versions v1.0.2 to v1.1.2
Exploitation of this vulnerability could result in privilege escalation.
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.