Is Rumba subject to the “urgent 11 vulnerabilities”?

  • 7024230
  • 01-Nov-2019
  • 11-Nov-2019

Environment

Rumba+ Desktop.

OnWeb Web-to-Host.

Rumba FTP.

Situation

The Cybersecurity and Infrastructure Security Agency within the Department of Homeland Security recently released an advisory about cybersecurity vulnerabilities called URGENT/11. These vulnerabilities have been reported in a third-party software component called IPnet that supports network communications between computers. These vulnerabilities may allow anyone to remotely take control of a medical device and change its function, cause denial of service, or cause information leaks or logical flaws, which may prevent the device from functioning.

Resolution

The Rumba product line does not use IPNet therefore it is not subject to these vulnerabilities.