Call us Send E-Mail Contact & Persons

Critical vulnerability in LANTIME firmware closed – CVE-2022-29154 / CVE-2022-37434

20th October 2022

The manufacturer Meinberg has closed several security-relevant vulnerabilities for its NTP time servers in LANTIME firmware versions 7.06.007 and 6.24.034. Affected are LANTIME-M series (M100, M200, M300, M400, M600, M900) as well as all devices of the LANTIME-IMS series (M500, M1000, M1000S, M2000S, M3000, M3000S, M4000) and the SyncFire product family (SF1000 / SF1100 / SF1200).

Whether and to what extent individual customers or LANTIME systems are vulnerable depends on the respective configuration, network infrastructure and other factors. For this reason, no general statement can be made about the actual vulnerability of the deployed systems. However, it is recommended to update to the latest versions.

Here you can find the security updates for the Meinberg LANTIME firmware. If you have further questions about this or need support, please feel free to contact our customer center.

Contact

Peter Schwark

RSS-Feed

Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader:

https://www.vivavis.com/en/category/it-security-en/feed/

You can find out how to integrate the RSS feed into Outlook here.