Industrial orgs at risk from critical Inea RTU vulnerability

Industrial organizations could be subjected to remote attacks exploiting a critical OS command injection vulnerability in Inea remote terminal units, which has since been patched as part of a firmware update, SecurityWeek reports. Threat actors could leverage the flaw, tracked as CVE-2023-2131, impacting Inea ME RTUs with firmware versions prior to 3.36 to facilitate remote code execution, according to an advisory from the Cybersecurity and Infrastructure Security Agency. Exploitation could also be conducted through the public internet and could enable root privileges and complete access to the targeted RTU in a bid to achieve further disruptions, said cybersecurity researcher Floris Hendricks, who discovered the vulnerability. "The attacker is also able to crash the system, which can have an enormous impact on the industrial processes of an organization. An attacker can also use it for network pivoting, to get, for example, access to the local network of the organization," Hendricks added.