TTCSIRT-156.081318: TT-CSIRT Advisory – NetComm Security Updates

TTCSIRT-156.081318: TT-CSIRT Advisory – NetComm Security Updates

ICS-CERT has released a security update stating that the NetComm’s Wireless 4G LTE Light Industrial M2M Router is vulnerable to:

a) Information Exposure
b) Cross-site Request Forgery
c) Cross-site Scripting

The flaws can be exploited remotely from the Internet and have been classified by ICS-CERT as “critical” while the information disclosure issues are said to be “high severity.”

Further information on these vulnerabilities and how they can be mitigated can be found on the ICS-CERT Website at https://ics-cert.us-cert.gov/advisories/ICSA-18-221-02