You are here

Rockwell Automation EDS Subsystem (ICSA-20-140-01) – Products Used in the Water and Wastewater and Energy Sectors

Rockwell Automation EDS Subsystem (ICSA-20-140-01) – Products Used in the Water and Wastewater and Energy Sectors

Created: Tuesday, May 19, 2020 - 14:20
Categories:
Cybersecurity

CISA has published an advisory on improper restriction of operations within the bounds of a memory buffer and SQL injection vulnerabilities in Rockwell Automation EDS Subsystem. Numerous products and version of these products are affected. Successful exploitation of these vulnerabilities could lead to a denial-of-service condition. Rockwell Automation recommends a series of measures to mitigate the vulnerabilities. CISA also recommends a series of measures to mitigate the vulnerabilities. Read the advisory at CISA.