Global Sources
EE Times-India
Stay in touch with EE Times India
EE Times-India > RF/Microwave

ICS-CERT reveals industrial wireless gateway vulnerabilities

Posted: 13 Jan 2014     Print Version  Bookmark and Share

Keywords:ICS-CERT  wireless gateway  Sierra Wireless  M2M 

The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has announced an advisory regarding the Sierra Wireless AirLink Raven X EV-DO application by Sierra Wireless amid reports that the device is vulnerable. The vulnerability of the gateway, used for industrial applications, stems from a lack of encryption during update and reprogramming processes, and affects versions V4221_4.0.11.003 and V4228_4.0.11.003.

ICS-CERT stated that multiple vulnerabilities, identified by a researcher at Cimation, allow for remote reprogramming of the firmware, and the ability for an attacker to affect functionality and operation of the application including complete system shutdown.

Impacted, in particular, are energy and transportation in the US, Canada and Europe. Sierra Wireless is the top provider of the cellular M2M embedded module market, with about 1.4 billion devices.

The company is recommending that customers upgrade to its GX400, GX440 or LS300 devices. So far, firmware, tools and utility downloads are still available, but the company has discontinued the AirLink Raven X EV-DO.

- Carolyn Mathas
  EE Times

Comment on "ICS-CERT reveals industrial wireless..."
*  You can enter [0] more charecters.
*Verify code:


Visit Asia Webinars to learn about the latest in technology and get practical design tips.


Go to top             Connect on Facebook      Follow us on Twitter      Follow us on Orkut

Back to Top