"Vulnerabilities Open Korenix JetWave Industrial Networking Devices to Attack"
CyberDanube researchers have discovered three vulnerabilities in various Korenix JetWave industrial access points and LTE cellular gateways that could enable attackers to disrupt their operation or use them as a foothold for future attacks. According to the researchers, if such a device serves as a key device in an industrial network or controls critical equipment via serial ports, an attacker can do more severe damage in the corresponding network. The vulnerabilities include two command injection flaws in the devices' web server and one Denial-of-service (DoS) flaw. Before executing an exploit for any of the three vulnerabilities, attackers must authenticate. This article continues to discuss the discovery, potential exploitation, and impact of the vulnerabilities found in a variety of Korenix JetWave industrial access points and LTE cellular gateways.