Security Advisory

EMH metering PSIRT – Product Security Incident Response Team

The EMH metering PSIRT is a central team at EMH metering GmbH & Co. KG tasked with managing the investigation and disclosure of security vulnerabilities. All reports regarding possible vulnerabilities or other security incidents in connection with EMH metering products can be forwarded to the EMH metering PSIRT. The EMH metering PSIRT coordinates and maintains communication with everyone involved, both in-house and externally, so that it can implement an appropriate response to any security problems that are identified.

Why should you report vulnerabilities?

Disclosing vulnerabilities enables us to fix these vulnerabilities and inform customers who are using the products in question about the fix. This approach can help us to keep making our products more secure, and above all to support EMH metering customers in managing security risks.

If you think you have uncovered a security vulnerability in a EMH metering product, please report it by e-mail to support@emh-metering.com.

Please include the following information with your report:

Subject: “PSIRT”
Content:

  • Product line
  • Vulnerable version
  • Vulnerability type (CWE-ID, CVE-ID if available)
  • Name of organization
  • E-mail
  • Telephone
  • Country

What will we do with your report?

EMH metering will ensure that the information you provide is sent to a select group of designated EMH metering employees with experience in dealing with incidents of this type: the Product Security Incident Response Team (PSIRT). No unauthorized employees or external users will be able to access to the information you send us.

EMH metering will also ensure that the identify and contact details of the security expert in question are kept confidential and not published in public statements (advisories and bulletins) unless explicitly requested by said security expert. The EMH metering PSIRT will investigate the reported vulnerability and contact you as soon as possible.

Stay informed

The EMH metering PSIRT investigates all reports of security problems and publishes security advisories on validated security vulnerabilities that directly affect EMH metering products and require either a software update, a software upgrade or other action on the part of the customer. As part of our ongoing efforts to support operators in addressing security risks and in ensuring the protected operation of systems, the EMH metering PSIRT publishes information that operators need in order to evaluate the ramifications of a security vulnerability.

Security Advisory

Nr.
EMH-2021-001
Date
03.02.2021
Product
Variomod XC Ethernet
Version
1.0
Incident
EMH metering released a new firmware that eliminates all vulnerabilities and recommends specific countermeasures for vulnerable versions.
Advisory
PDf-File
Download
Download file

Get in touch with us.

Would you like more information about our products, applications or our company? Our respective contact persons will be pleased to help you.

          Newsletter registration

          Sign up here for up-to-date information on events, training courses and new solutions from our company.

          Want to unsubscribe? Click here.