QID 590316
Date Published: 2021-11-08
QID 590316: Fuji Electric FRENIC Devices (Update A) Multiple Vulnerabilities (ICSA-18-270-03)
AFFECTED PRODUCTS
The following versions of FRENIC Loader, FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace, HVAC drive devices, are affected:
FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using registry "HKLM\SOFTWARE
Successful exploitation of these vulnerabilities could allow for arbitrary remote code execution affecting the availability of the device.
Solution
Customers are advised to refer to CERT MITIGATIONS section ICSA-18-270-03 for affected packages and patching details.
Vendor References
- ICSA-18-270-03 -
www.us-cert.gov/ics/advisories/ICSA-18-270-03
CVEs related to QID 590316
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-18-270-03 |
|