Alerton 0 Day Critical Exploit

17 Aug 2022 1:21 PM | Anonymous member

There is an Alerton CVE that was released last week.  There is no patch at the moment and it allows for controller data to be overwritten without password.  We've been pressing our OT vendor and Honeywell for more details about how to best mitigate until a patch is available, but they've been slow to provide information.  The one thing I cannot determine from the articles I've found is if the controllers are being overwritten through a direct connection to the controller either direct or through the internet, or if they're exploiting the web front-end on the server to gain access to the nodes.

© Copyright 2023 Real Estate Cyber Consortium Inc.™ All Rights Reserved. Real Estate Cyber Consortium (RECC) is a 501(c)6 non-profit organization.  Privacy Policy and Terms of Use.
Powered by Wild Apricot Membership Software