As many as five vulnerabilities have been uncovered in Ovarro’s TBox remote terminal units (RTUs) If left unpatched, they could open the door for escalating attacks against critical infrastructures. TBox is an “all-in-one” solution for automation and control systems for supervisory control and data acquisition (SCADA) applications. Most of the devices are said to be located in Canada, Germany, Thailand, and the U.S. The flaws were detected and reported to CISA by a security researcher for operational technology security company Claroty.
Source: https://thehackernews.com/2021/03/flaws-in-ovarro-tbox-rtus-could-open.html