We keep this list of security information for the products icom Connectivity Service, icom Router Management and all routers with the operating system icom OS up to date.
Login
The iCS - VPN is a remote access service for simple and secure networking of sites, systems or mobile devices via a VPN network.
The iRM enables rollouts of device firmware, configurations, security certificates and applications including logging.
Here you get access to our Partner Portal – become a part of our network now!
Would you like to stay up to date? Register for new security advisories and we will inform you by e-mail as soon as new security advisories are available.
Would you like to learn more about IT security at INSYS icom? You can find more information on the topic here
You would like to inform us about a security note or have questions about IT security at INSYS icom? Please send an e-mail to security@insys-icom.com or use our secure online form.
Title | Severity level | CVE ID | Products concerned | Release date | Download | Solution |
---|---|---|---|---|---|---|
Input Validation Flaw in icomOS Firewall and Port Rules Handling | Medium | All icom OS versions | 2024-11-27 | PDF version | ||
OpenVPN | Critical | CVE-2023-46850 | icom OS 7.0 - 7.9 | 2024-10-10 | PDF version | icom OS 8.0 |
OpenVPN | High | CVE-2023-46849 | icom OS 7.0 - 7.9 | 2024-10-10 | PDF version | icom OS 8.0 |
OpenSSH | Informational | CVE-2024-6387 | none | 2024-07-17 | PDF version | |
XZ Utils Backdoor | Informational | CVE-2024-3094 | none | 2024-04-08 | PDF version | |
OpenSSH Terrapin Attack | Medium | CVE-2023-48795 | icom OS 5.2 or higher | 2024-01-11 | PDF version | icom OS V7.9 |
Open tcp port 8888 | informational | icom OS 5.5 or higher | 2023-03-20 | PDF version | icom OS V6.10 | |
OpenSSL 3.0 | informational | CVE-2022-3602 CVE-2022-3786 | none | 2022-11-02 | PDF version | |
Log4j | informational | CVE-2021-44228 | none | 2021-12-13 | PDF version | |
Multiple vulnerabilities in cURL and openSSL | High | cURL CVE-2020-8286 CVE-2020-8285 CVE-2020-8284 CVE-2020-8231 CVE-2020-8177 CVE-2020-8169 openSSL CVE-2020-1967 CVE-2020-1971 | icom OS 4.4 or lower | 2021-02-03 | PDF version | icom OS V4.5 |
dnsmasq multiple vulnerabilities | High | CVE-2020-25681 CVE-2020-25682 CVE-2020-25683 CVE-2020-25684 CVE-2020-25685 CVE-2020-25686 CVE-2020-25687 CVE-2020-25687 | icom OS 4.4 or lower | 2021-02-02 | PDF version | icom OS V4.5 |
Amnesia:33 | Informational | none | 2020-09-28 | PDF version | ||
Ripple20 | Informational | none | 2020-06-24 | PDF version | ||
pppd buffer overflow | Critical | CVE-2020-8597 | icom OS 4.1 or lower | 2020-05-30 | PDF version | icom OS V4.2 or greater |
You would like to inform us about a security note or have questions about IT security at INSYS icom?
Please use our secure online form.