Show Navigation
GeniusMusing (geniusmusing@nu.federati.net)'s status on Thursday, 01-Aug-2019 23:06:34 UTC
-
Putting this up because I have not seen it and this will be a big thing in a few days, maybe next week.
URGENT/11 Information from the Research Team Armis Labs
https://armis.com/urgent11/
>The Armis research team, Armis Labs, have discovered 11 zero day vulnerabilities in VxWorks®, the most widely used operating system you may never heard about. VxWorks is used by over 2 billion devices including critical industrial, medical and enterprise devices. Dubbed “URGENT/11,” the vulnerabilities reside in VxWorks’ TCP/IP stack (IPnet), impacting all versions since version 6.5, and are a rare example of vulnerabilities found to affect the operating system over the last 13 years. Armis has worked closely with Wind River®, the maintainer of VxWorks, and the latest VxWorks 7 released on July 19 contains fixes for all the discovered vulnerabilities.
~~
A partial list of devices impacted include:
SCADA devices
Industrial controllers
Patient monitors
MRI machines
Firewalls
VOIP phones
Printers
~~
Partial list of comapnies or devices using VxWorks versions impacted by URGENT/11 (links to company’s advisories have been included, if available):
ABB
Arris Modems
Avaya VOIP Media Gateways
Belden Industrial Devices
Dräger
Kyocera Printers
Ricoh Printers
Rockwell PLCs
Samsung Printers
Schneider Electric PLCs
Sonicwall Firewalls
Xerox Printers
If you think you may have something on this list, stop what you are doing and update the firmware. Now! Pretty much from what I have read/heard is the only way to make one of these devices safe without updating is to turn it off or disconnect it.