You are here

KUKA.Sim Pro (ICSA-20-098-05)

KUKA.Sim Pro (ICSA-20-098-05)

Created: Thursday, April 9, 2020 - 16:30
Categories:
Cybersecurity

CISA has published an advisory on an improper enforcement of message integrity during transmission in a communication channel vulnerability in Kuka.Sim Pro. Version 3.1 is affected. Successful exploitation of this vulnerability could result in a loss of integrity in external 3D models fetched from remote servers. When tested on real machines, this effect is unpredictable. KUKA recommends upgrading KUKA.Sim Pro to Version 3.1.2 or above to mitigate this vulnerability. CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.