Security Advisory

Unitronics Product Security Update Advisory

  • Mar 19 2024

Overview

 

An update has been made available to fix vulnerabilities in Unitronics products. users of affected versions are advised to update to the latest version.

 

Affected Products

 

Unistream PLC versions 1.35.227 or below

 

Resolved Vulnerabilities

 

Vulnerability that has been exploited in past attacks against US water utilities [2][3]

 

Vulnerability Patches

 

Unistream PLC 1.36.63 and at least version 1.36.63

 

Referenced Sites

 

[1] UniLogic for UniStream Series

https://unitronicsplc.com/software-unilogic-for-programmable-controllers

[2] “Attack Exploiting PLC Vulnerability Targets U.S. Water Utilities”

https://www.datanet.co.kr/news/articleView.html?idxno=189331

[3] Iranian Hacking Group Targets U.S. Water Facilities in Cyber Attack

https://www.dailysecu.com/news/articleView.html?idxno=151664

Previous Post

Next Post