echelon security advisories
4 threat alerts tracking vulnerabilities and security advisories that affect echelon products.
Vulnios monitors echelon CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent echelon security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2018-8855 — echelon — smartserver_1_firmware, smartserver_1
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. The devices allow unencrypted Web connections by default,
criticalCVE-2018-8855Critical Vulnerability: CVE-2018-8851 — echelon — smartserver_1_firmware, smartserver_1
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. The devices store passwords in plaintext, which may allow
criticalCVE-2018-8851Critical Vulnerability: CVE-2018-8859 — echelon — smartserver_1_firmware, smartserver_1
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. An attacker can bypass the required authentication specifi
criticalCVE-2018-8859Critical Vulnerability: CVE-2018-10627 — echelon — smartserver_1_firmware, smartserver_1
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. An attacker can use the SOAP API to retrieve and change se
criticalCVE-2018-10627
Track echelon exposure across your environment
Vulnios automatically cross-references your asset inventory against new echelon CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan