Cognex In-Sight Products Telnet Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in Cognex In-Sight Explorer, In-Sight 2000 series, In-Sight 7000 series, In-Sight 8000 series, and In-Sight 9000 series cameras and firmware, all versions 5.x prior to and including 6.5.1. The vulnerability arises from improper handling of login failures in a telnet-based management service exposed on port 23. This mismanagement allows the service to become unreachable, disrupting normal operations such as firmware upgrades and device reboots, which require authentication.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the telnet service to become unreachable and disrupting management operations on the device.

Remediation

Cognex advises users to switch to next-generation In-Sight Vision Suite-based systems, such as the In-Sight 2800, In-Sight 3800, or In-Sight 8900 series embedded cameras. For those using In-Sight Explorer, CISA recommends minimizing network exposure for control system devices, locating them behind firewalls, and using secure remote access methods like VPNs. Organizations should also follow CISA's recommended practices for ICS cybersecurity.