Security Advisories

We keep this list of security information for the products icom Connectivity Service, icom Router Management and all routers with the operating system icom OS up to date.

Newsletter registration

Would you like to stay up to date? Register for new security advisories and we will inform you by e-mail as soon as new security advisories are available.

Learn more

Would you like to learn more about IT security at INSYS icom? You can find more information on the topic here

Report a vulnerability

You would like to inform us about a security note or have questions about IT security at INSYS icom? Please send an e-mail to security@insys-icom.com or use our secure online form.

TitleSeverity levelCVE IDProducts concernedRelease dateDownloadSolution
Input Validation Flaw in icomOS Firewall and Port Rules HandlingMediumAll icom OS versions2024-11-27PDF version
OpenVPNCriticalCVE-2023-46850
icom OS 7.0 - 7.92024-10-10PDF versionicom OS 8.0
OpenVPNHighCVE-2023-46849
icom OS 7.0 - 7.92024-10-10PDF versionicom OS 8.0
OpenSSHInformationalCVE-2024-6387
none2024-07-17PDF version
XZ Utils BackdoorInformationalCVE-2024-3094
none2024-04-08PDF version
OpenSSH
Terrapin Attack
MediumCVE-2023-48795
icom OS 5.2 or higher2024-01-11PDF versionicom OS V7.9
Open tcp port 8888informationalicom OS 5.5 or higher2023-03-20PDF versionicom OS V6.10
OpenSSL 3.0informationalCVE-2022-3602
CVE-2022-3786
none2022-11-02PDF version
Log4jinformationalCVE-2021-44228none2021-12-13PDF version
Multiple
vulnerabilities
in cURL and
openSSL
HighcURL
CVE-2020-8286
CVE-2020-8285
CVE-2020-8284
CVE-2020-8231
CVE-2020-8177
CVE-2020-8169

openSSL
CVE-2020-1967
CVE-2020-1971

icom OS 4.4
or lower
2021-02-03PDF versionicom OS V4.5
dnsmasq
multiple
vulnerabilities
HighCVE-2020-25681
CVE-2020-25682
CVE-2020-25683
CVE-2020-25684
CVE-2020-25685
CVE-2020-25686
CVE-2020-25687
CVE-2020-25687
icom OS 4.4
or lower
2021-02-02PDF versionicom OS V4.5
Amnesia:33Informationalnone2020-09-28PDF version
Ripple20Informationalnone2020-06-24PDF version
pppd
buffer
overflow
CriticalCVE-2020-8597icom OS 4.1
or lower
2020-05-30PDF versionicom OS V4.2
or greater

Contact form for security notes

You would like to inform us about a security note or have questions about IT security at INSYS icom?
Please use our secure online form.