On 21 October 2021 ICS-CERT published an ICS Advisory to highlight vulnerabilities in the following product:
- DIALink – version 184.108.40.206 and prior
Exploitation of these vulnerabilities could lead to information disclosure, directory traversal, privilege elevation, upload of arbitrary files and remote code execution.
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates when available.
ICS Advisory (ICSA-21-294-02)