CISA has published an advisory on a stack-based buffer overflow vulnerability in FATEK Automation PLC WinProladder. Versions 3.28 and prior are affected. Successful exploitation of this vulnerability could crash the device being accessed; a buffer overflow condition may cause a denial-of-service event and remote code execution. FATEK has not responded to requests to work with CISA to mitigate this vulnerability. Users of these affected products who would like to see more responsible security are invited to contact Fatek customer support. CISA recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.
You are here
Related Resources
Jul 23, 2024 in Cybersecurity, in OT-ICS Security, in Security Preparedness
Jul 23, 2024 in Cybersecurity, in Security Preparedness
Jul 18, 2024 in Cybersecurity, in Security Preparedness