Netcontrol
security
advisories

This page contains the security advisories published by Netcontrol.

When a vulnerability has been identified in a piece of software used in our products, we publish a security advisory detailing which products are affected and how/what customers should do to mitigate the risks.

Apache Log4j2

[21 December 2021] A critical vulnerability has been found in the Apache logging component used widely by software vendors. It is also used by Netcontrol in some Netcon 3000 SCADA systems.

The details can be found in the following document:

This vulnerability does not affect any of Netcontrol’s other products, such as

  • earlier versions of Netcon 3000 (7.3, 7.2, 7.1, 7.0, 6.3, 6.2, 6.1),
  • Any RTU products (Netcon 500, Netcon 200, Netcon 100, RTU28, RTU8, FastNet),
  • Netcon Application Manager,
  • Netcontrol’s data radios and CCUs, or
  • Netcontrol actuators.

For further information, please contact Netcontrol.