Rewterz Threat Advisory – CVE-2020-4345 in SQL affects IBM i
May 18, 2020Rewterz Threat Alert – Spoofing Visa application with HTTP status-based Trojan
May 18, 2020Rewterz Threat Advisory – CVE-2020-4345 in SQL affects IBM i
May 18, 2020Rewterz Threat Alert – Spoofing Visa application with HTTP status-based Trojan
May 18, 2020Severity
Medium
Analysis Summary
There is a flaw in the code used to configure the internal gateway firewall when the gateway’s VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disabled resulting in exposure of all ports used by the gateway.
Impact
Improper Access Control
Affected Vendors
Emerson
Affected Products
- Wireless 1410 Gateway
- revisions 4.6.43 to 4.7.84
- Wireless 1420 Gateway
- Wireless 1552WU Gateway
- revisions 4.6.43 to 4.7.84
Remediation
Emerson recommends end users update the firmware.