What Zebra Enterprise products are affected by Bash/Shellshock vulnerability?

Article ID: 62581636

Question


 

What Zebra Enterprise products are affected by Bash/Shellshock vulnerability?

Facts


 

NX95x0, NX7500, NX6500 and NX4500, and VX series.

Answer


 

There is not any exposure for Zebra Enterprise’ WiNG5 Access Points, RFS series controllers and TS-524 PowerBroadband switch as they do not have bash shell as part of the firmware.


The NX series controllers – NX95x0, NX7500, NX6500 and NX4500, the VX series virtualized controller, and ADSP have bash shell as part of the firmware (in the OS). However, access to the bash shell is restricted from all user interfaces; we do not anticipate any exposure to this reported vulnerability. A patch is available for ADSP (Read More>>). For NX and VX series controllers (Read More>>).



Our legacy devices (AP51X1, CB3000, WS2000, and WS5X00) are not susceptible to the BASH/Bourne shellshock vulnerability as these devices do not have BASH.

Note:
Link to patch for ADSP only ( Read More>>)
ADSP 9.1.2 release will have this update in its firmware.