ZLAN Information Technology Co. ZLAN5143D
Summary
CISA has released an alert regarding vulnerabilities in ZLAN Information Technology Co.'s ZLAN5143D device. Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication or reset the device password.
IFF Assessment
The vulnerabilities allow attackers to bypass authentication, giving them unauthorized access.
Severity
Defender Context
This alert highlights critical vulnerabilities in an industrial control system (ICS) device that could allow attackers to gain unauthorized access and control. Defenders should inventory these devices, apply available patches if they exist, and implement compensating controls such as network segmentation and strong password policies where possible. The lack of vendor response adds to the challenge, so heightened monitoring is necessary.