Rewterz
Rewterz Threat Advisory – CVE-2020-4345 in SQL affects IBM i
May 18, 2020
Rewterz
Rewterz Threat Alert – Spoofing Visa application with HTTP status-based Trojan
May 18, 2020

Rewterz Threat Advisory – CVE-2020-12030 – ICS: Emerson WirelessHART Gateway Access Control Vulnerability

Severity

Medium

Analysis Summary

There is a flaw in the code used to configure the internal gateway firewall when the gateway’s VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disabled resulting in exposure of all ports used by the gateway.

Impact

Improper Access Control

Affected Vendors

Emerson

Affected Products

  • Wireless 1410 Gateway
  • revisions 4.6.43 to 4.7.84
  • Wireless 1420 Gateway
  • Wireless 1552WU Gateway
  • revisions 4.6.43 to 4.7.84

Remediation

Emerson recommends end users update the firmware.