Netcontrol Security Advisory – Apache Log4j2

A critical vulnerability in Apache logging component has been found. The component is widely in use in a lot of vendors software and is used by Netcontrol in some Netcon 3000 scada systems. The details can be found in the following document  N00214-OP-EN-2

This vulnerability does not affect any of Netcontrol’s other products, for example

• Netcon 3000 system earlier versions (7.3, 7.2, 7.1, 7.0, 6.3, 6.2, 6.1)
• All RTU products (Netcon 500, Netcon 200, Netcon 100, RTU28, RTU8, FastNet, ….)
• Netcon Application Manager
• Netcontrol data radios and CCUs
• Netcontrol actuators

For further information contact Netcontrol.