Cybersecurity

Technical support

homeTechnical supportCybersecurity

Product Cybersecurity Advisory

At Unitronics, we prioritize the security of your automation systems. This page brings together resources and timely advisories to equip you with the knowledge and tools to protect your Unitronics products against known vulnerabilities. By staying informed and implementing available mitigation measures, you can ensure ongoing operational integrity and safeguard your valued data.

Basic ICS Cybersecurity Guidelines

  • All industrial automation equipment must be protected by network
    equipment with “Firewall” functionality
  • Avoid the usage of Port-Forwarding / NAT that exposes industrial automation equipment to an unauthorized connection. Use VPN secure remote access, recommended to use 2FA
  • Separate the OT from the IT
  • Don’t allow “Remote Management” on the network equipment
  • Make sure that the industrial automation equipment uses the latest software
    and firmware versions provided by the vendor
  • It’s recommended to use Unitronics UCR family products as network access equipment

Unitronics Cybersecurity for UniStream PLC Series

Visit our dedicated page for Unitronics UniStream PLC Series.

Unitronics Cybersecurity for Vision & Samba PLC Series

Visit our page for Unitronics Vision & Samba PLC Series.

NumberProductTitleVersionDownload
2024-009Vision LegacyStoring Passwords in a Recoverable Format1.0
2024-008UniStreamUse of Hard-coded Password: Sensitive Information Embedded inside Devices Firmware1.0
2024-007UniStreamOS Command Injection1.0
2024-006UniStreamOS Command Injection1.0
2024-005UniStreamPath Traversal1.0
2024-004UniStreamRelative Path Traversal1.0
2024-003UniStreamExposure of Sensitive Information to an Unauthorized Actor1.0
2024-002UniStreamPath Traversal1.0
2024-001UniStreamImproper Authentication1.0
2023-001Vision EnhancedUnauthenticated network access1.0
2016-001VisiLogicStack-based buffer overflow1.0
2015-003VisiLogicHeap-based buffer overflow in VisiLogic1.0
2015-002VisiLogicActiveX control allows remote execution code1.0
2015-001VisiLogicActiveX control access is not restricted1.0
2011-001UniOPCUniOPC IP*Works! SSL1.0