Ornamental dots. Two rows of three dots. The top row is a light blue. The bottom row is one light blue dot followed by two orange dots.

AMNESIA:33

AMNESIA:33

Vedere Labs discovered 33 vulnerabilities impacting millions of IoT, OT and IT devices that present an immediate risk for organizations worldwide.

Read Report

4

Critical Vulnerabilities

150+

Vendors Affected

1M+

IoT, OT & IT Devices

The Global Impact of AMNESIA:33

AMNESIA:33 is a set of 33 vulnerabilities that impact four open source TCP/IP stacks (uIP, FNET, picoTCP and Nut/Net), which collectively serve as the foundational components of millions of connected devices worldwide. These vulnerabilities primarily cause memory corruption, allowing attackers to compromise devices, execute malicious code, perform denial-of-service attacks and steal sensitive information.

Understand & Mitigate Your Risk

While analyzing IoT, OT and IT risks, Forescout researchers discovered serious vulnerabilities in millions of devices that span enterprise environments everywhere. It’s important to act now to identify vulnerable devices and mitigate these risks across your Enterprise of Things. Learn six best practices you can take to protect your organization.

Download White Paper

Learn How Forescout Can Help

Get answers to your most pressing questions about AMNESIA:33. Our FAQ document explains how the Forescout platform actively defends against AMNESIA:33, discusses Security Policy Templates (SPTs) for Per-Appliance Licensing and Flexx customers and eyeInspect scripts for these vulnerabilities, and covers risk mitigation best practices.

Get FAQs

Affected Devices & Security Advisories

Get up-to-date information about impacted vendors and devices from CERT coordination agencies.
Refer to the latest security advisories about AMENSIA:33 vulnerabilities.

ICS-CERT advisory (icsa-20-343-01) | CERT Coordination Center advisory
BSI (German Federal Office for Information Security) statement | JPCERT advisory

The Latest from Forescout

Webinar

AMNESIA:33: Understand & mitigate the impact on millions of IoT, OT & IT devices

Forescout Research Labs discovered 33 vulnerabilities, four that are critical, lurking in millions of enterprise IoT, OT and IT devices. These vulnerabilities can cause memory corruption and affect four open-source TCP/IP stacks in widespread use across devices from over 150 vendors. Cybercriminals can target these vulnerabilities to perform remote code execution, cause denial of service and expose sensitive information.
Watch
Video

How to identify and mitigate risk from AMNESIA:33 vulnerabilities

Amnesia:33 is a set of thirty-three new memory-corrupting vulnerabilities, affecting millions of enterprise IoT, OT and IT devices. Quickly detect and mitigate against potential threats by learning how eyeSight can be a critical part of your security playbook.
Watch
Blog

AMNESIA:33 – Foresout Research Labs Finds 33 New Vulnerabilities in Open Source TCP/IP Stacks

What Is AMNESIA:33? AMNESIA:33 is a set of 33 vulnerabilities impacting four open source TCP/IP stacks (uIP, PicoTCP, FNET, and Nut/Net), which collectively serve as the foundational connectivity components of millions of devices around the world. The details of these vulnerabilities are described in our technical report and will…
Read More
See All Resources
Demo RequestForescout PlatformTop of Page