Researchers at Nozomi Networks Labs have recently discovered 20 distinct vulnerabilities in Advantech EKI wireless access points. These access points are known for their resilience in challenging environments and are thus used in diverse sectors, including the water sector. According to Nozomi Networks, these vulnerabilities pose significant risks, allowing unauthenticated remote code execution with root privileges potentially allowing full compromise of affected devices. WaterISAC encourages members to determine if the following versions of the Advantech EKI access points are used in their environments and to promptly upgrade to the latest firmware versions.

Nozomi Networks researchers analyzed version 1.6.2 of the EKI-6333AC-2G wireless access point where the vulnerabilities were originally found. Through the responsible disclosure process, the EKI-6333AC-2GD and EKI-6333AC-1GPO devices were also confirmed to be impacted. After these vulnerabilities were reported, Advantech promptly addressed them by releasing the following firmware versions:

• EKI6333AC-2G: v1.6.5
• EKI6333AC-2GD: v1.6.5
• EKI6333AC-1GPO: v1.2.2

It is strongly recommended that asset owners upgrade to the latest version to protect their network and devices from unauthorized access. For more information visit, Nozomi Networks.