Forescout Vedere Labs discloses 21 new vulnerabilities affecting OT/IoT routers
Forescout Vedere Labs –
Forescout Vedere Labs has identified 21 new vulnerabilities in Sierra Wireless AirLink cellular routers, impacting various industries including power distribution, national health systems, waste management, retail, and vehicle tracking.
These vulnerabilities, including remote code execution, cross-site scripting, denial of service, unauthorized access, and authentication bypasses, pose a significant threat and allow attackers to steal credentials, take control of routers, and ultimately gain access to critical networks.
With over 86,000 exposed routers online, the severity of these vulnerabilities becomes apparent, compounded by the fact that less than 10% of known previous vulnerabilities have been patched since 2019.
Mitigation recommendations include implementing patches provided by Sierra Wireless, changing default SSL certificates, limiting access to unnecessary services, deploying web application firewalls, and utilizing OT/IoT-aware intrusion detection systems.
Strong credential usage, network isolation, and adherence to security recommendations for Sierra Wireless products are also advised.
Forescout offers active help through eyeInspect and Risk and Exposure solutions, enabling the detection of vulnerable devices and providing real-time content deployment for identifying vulnerable devices.
Furthermore, Forescout XDR can automate correlation of telemetry and logs from diverse sources to identify potential threats.
Ultimately, Forescout eyeControl can enact automated remediation or restriction actions based on user-defined policies.
This disclosure highlights the critical need for immediate action in addressing these vulnerabilities and underscores the importance of vigilant security measures in mitigating potential threats.
Link: https://www.forescout.com/blog/sierra21-supply-chain-vulnerabilities-iot-ot-routers/