SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

ICS/OT

Critical Vulnerabilities Found in Planet Technology Industrial Networking Products

Planet Technology industrial switches and network management products are affected by several critical vulnerabilities. 

Industrial switches and network management products made by Taiwan-based Planet Technology are affected by several critical vulnerabilities.

The existence of the flaws came to light last week when CISA published an advisory describing five vulnerabilities discovered in Planet Technology’s UNI-NMS-Lite, NMS-500 and NMS-1000V network management systems, and WGS-804HPT-V2 and WGS-4215-8T2S switches.

The security holes have all been assigned a ‘critical’ severity rating. They can be exploited by remote, unauthenticated attackers to gain admin privileges to the affected product (through hardcoded credentials), create an admin account due to missing authentication, and conduct command injection to execute OS commands or read/manipulate device data.

CISA pointed out that the impacted devices are used worldwide, including in the critical manufacturing sector. 

Kevin Breen, senior director of cyber threat research at Immersive, who has been credited for reporting the vulnerabilities, disclosed technical details the day after CISA published its advisory. 

The researcher has shared information on how the vulnerabilities were found and how they could be exploited by threat actors. 

According to Breen, Censys searches show hundreds and possibly thousands of potentially vulnerable Planet Technology devices that are exposed to the internet. 

The researcher discovered the vulnerabilities during the analysis of a couple of Planet Technology device flaws reported last year by industrial cybersecurity firm Claroty. 

Advertisement. Scroll to continue reading.

Planet Technology has patched the vulnerabilities found by Breen — the vendor was notified on March 6 through CISA and fixes were rolled out on April 16. 

CISA said it’s not aware of the in-the-wild exploitation of these vulnerabilities.

Learn More at SecurityWeek’s ICS Cybersecurity Conference
The leading global conference series for Operations, Control Systems and OT/IT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.
ICS Cybersecurity Conference
October 27-30, 2025 | Atlanta
www.icscybersecurityconference.com

Related: Lantronix Device Used in Critical Infrastructure Exposes Systems to Remote Hacking

Related: Study Identifies 20 Most Vulnerable Connected Devices of 2025

Related: More Solar System Vulnerabilities Expose Power Grids to Hacking

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Virtual Event: Threat Detection and Incident Response Summit
May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM
May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

Cloud and cybersecurity MSP Ekco has appointed Ben Savage as UK CEO.

Shane Barney has been appointed CISO of password management and PAM solutions provider Keeper Security.

Edge Delta has appointed Joan Pepin as its Chief Information Security Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.