CyberSecurity Update: Rockwell PanelView
The Department of Homeland Security Industrial Control Systems Cyber Emergency Response team reports that some versions of Rockwell’s PanelView Plus 6 700-1500, graphic terminals and logic module products are vulnerable to cyber threats. Successful exploitation of this vulnerability could allow an attacker to remotely access the device to potentially retrieve data or disrupt the availability of the device.
The problem is isolated to specific revisions of firmware. Graphic terminals running OS 2.31 or greater are not affected by this vulnerability.
To safeguard operations from this threat, affected users should update to a firmware revision that addresses this vulnerability.
If you need assistance to determine your status and/or install the appropriate firmware update, we are here to help. Request assistance.
The complete text of this alert is available at Department of Homeland Security Industrial Control Systems Cyber Emergency Response Team Advisory (ICSA-17-157-01)