JTEKT HMI ViewJet C-more and GC-A2 Series Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in JTEKT ELECTRONICS CORPORATION's HMI ViewJet C-more series and HMI GC-A2 series. This vulnerability allows a remote, unauthenticated attacker to cause a denial-of-service condition by sending specially crafted packets to specific ports. The affected products require a manual restart to recover from the service disruption.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the HMI service to stop. A manual restart is required to resume normal operation.

Remediation

JTEKT ELECTRONICS CORPORATION has recommended users apply a workaround. When connecting the HMI to the Internet, use a firewall or virtual private network (VPN) to prevent unauthorized access. It is also advised to make the HMI accessible only within the internal network.