Optigo Networks ONS NC600 SSH Command Execution Vulnerability

A vulnerability exists in Optigo Networks ONS NC600 versions 4.2.1-084 through 4.7.2-330, allowing an attacker to connect to the device's SSH server and execute operating system commands. This issue arises from the use of hard-coded credentials, which could enable unauthorized access and command execution on the device.

Impact

Exploitation of this vulnerability could lead to unauthorized OS command execution on the affected device.

Remediation

Optigo Networks recommends using a dedicated network interface card (NIC) on the Building Management System (BMS) computer, setting up a router firewall with a whitelist for devices allowed to access OneView, and connecting to OneView via a secure VPN. CISA advises minimizing network exposure for control system devices, locating them behind firewalls, and using secure remote access methods like VPNs.