You are here

Fieldcomm Group HART-IP and hipserver (ICSA-20-287-04)

Fieldcomm Group HART-IP and hipserver (ICSA-20-287-04)

Created: Tuesday, October 13, 2020 - 15:24
Categories:
Cybersecurity

CISA has published an advisory on a stack-based buffer overflow vulnerability in Fieldcomm Group HART-IP and hipserver. For HART-IP Developer kit, release 1.0.0.0 is affected. For hipserver, release 3.6.1 is affected. Successful exploitation of this vulnerability could crash the device being accessed; a buffer overflow condition may allow remote code execution. Fieldcomm Group recommends users restrict access to the computers or devices running the software. Users of hipserver should immediately upgrade source code to v3.7.0 or later. CISA also advised on a series of measures to mitigate the vulnerability. Read the advisory at CISA.