QID 591278
Date Published: 2023-01-06
QID 591278: AutomationDirect DirectLOGIC with Ethernet Communication Modules Denial of Service (DoS) Multiple Vulnerabilities (ICSA-22-167-03)
AFFECTED PRODUCTS
All versions of H0-ECOM and H0-ECOM100 when installed in the following D0-06 series CPUs versions prior to v2.72:
D0-06DD1
D0-06DD2
D0-06DR
D0-06DA
D0-06AR
D0-06AA
D0-06DD1-D
D0-06DD2-D
D0-06DR-D
All versions of H0-ECOM and H0-ECOM100 when installed in the following D0-05 series CPUs versions prior to v5.41:
D0-05DD
D0-05DR
D0-05DA
D0-05AR
D0-05AA
D0-05AD
D0-05DD-D
D0-05DR-D
All versions of H2-ECOM and H2-ECOM100 when installed in the following:
D2-240: All versions
D2-250: All versions
D2-250-1: All versions prior to 4.91
D2-260: All versions prior to 2.71
D2-262: All versions prior to 1.06
All versions of H4-ECOM and All versions of H4-ECOM100 when installed in the following:
D4-430: All versions
D4-440: All versions
D4-450: All versions
D4-454: All versions prior to 1.04
QID Detection Logic:
This QID checks for the Vulnerable version of AutomationDirect DirectLOGIC with Ethernet Communication Modules using passive scanning
Successful exploitation of these vulnerabilities could cause a loss of sensitive information, unauthorized changes, and a denial-of-service condition.
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-167-03 for affected packages and patching details.
- ICSA-22-167-03 -
www.cisa.gov/uscert/ics/advisories/icsa-22-167-03
CVEs related to QID 591278
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-22-167-03 |
|