Firebits

**Name of the Vulnerable Software and Affected Versions** Elipse E3 versions 3.x and earlier **Description** The issue allows remote attackers to cause a denial of service, resulting in an application crash and potentially a plant outage. This can be achieved by sending a rapid series of HTTP requests to the "index.html" endpoint on TCP port 1681. **Recommendations** For Elipse E3 versions 3.x and earlier, consider restricting access to the "index.html" endpoint on TCP port 1681 to minimize the risk of exploitation. As a temporary workaround, limiting the rate of HTTP requests to this endpoint may also help mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.