이 페이지는 ZEISS Ophthalmic Diagnostics Instruments 소유자에게 다음에 대한 정보를 제공하기 위한 것입니다.

Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update

"PrintNightmare"는 Microsoft Windows 운영 체제로 실행되는 장치에 영향을 미치는 보안 취약점의 이름입니다. Microsoft에 따르면 "Windows Print Spooler 서비스가 특정 권한으로 파일 작업을 부적절하게 수행하는 경우 원격 코드 실행과 관련된 보안 취약점이 발생합니다. 이러한 보안 취약점을 이용하는 공격자는 SYSTEM 권한으로 임의의 코드를 실행할 수 있습니다. 그런 다음 공격자는 프로그램을 설치하고 데이터를 표시, 변경 또는 삭제하거나 무제한 사용자 권한으로 새 계정을 만들 수 있습니다.
"PrintNightmare"는 ZEISS 제품의 보안이나 기능에 영향을 미치지 않습니다. 그럼에도 불구하고 "PrintNightmare" 보안 허점이 발생하지 않도록 장치에 대한 보안 업데이트(패치)를 제공합

ZEISS는 Windows 운영 체제가 설치된 ZEISS 제품에 보안 취약점이 미치는 영향을 확인했습니다. 아래 나열된 제품의 경우에만 업데이트가 필요합니다.

ZEISS 장치에서 보안 허점이 발생하지 않도록 아래 표에서 업데이트에 대한 각 설치 지침을 확인하십시오. ZEISS 장치 업데이트 시 도움이 필요한 경우 현지 지원팀에 문의하십시오.

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CIRRUS	ZEISS CIRRUS 500/5000/6000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS CIRRUS	ZEISS CIRRUS 400/4000/500/5000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CIRRUS photo 600/800	ZEISS CIRRUS photo 600/800	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS CIRRUS photo 600/800	ZEISS CIRRUS photo 600/800	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“)	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS ATLAS 9000	ZEISS ATLAS 9000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS ATLAS 9000	ZEISS ATLAS 9000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CLARUS 500/700	ZEISS CLARUS 500/700	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS HFA3	ZEISS HFA3	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS Note: the HFA3 is shipped with the instrument running in kiosk mode. To install the patch, disable Kiosk mode (Refer to instructions in the HFA3 IFU to access the Windows desktop), login as the IT Administrator user, run the “Kiosk OFF” shortcut on the desktop, and reboot the instrument.	1. KB5001402 2. KB5004948
ZEISS HFA3	ZEISS HFA3	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS Note: the HFA3 is shipped with the instrument running in kiosk mode. To install the patch, disable Kiosk mode (Refer to instructions in the HFA3 IFU to access the Windows desktop), login as the IT Administrator user, run the “Kiosk OFF” shortcut on the desktop, and reboot the instrument.	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS PLEX Elite 9000	ZEISS PLEX Elite 9000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS PLEX Elite 9000	ZEISS PLEX Elite 9000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS PRIMUS 200	ZEISS PRIMUS 200	Windows 10: serial numbers starting with 200-3XXXX and 200-5XXXX	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS PRIMUS 200	ZEISS PRIMUS 200	Windows 7: serial numbers starting with 200-0XXXX and 200-2XXXX	Please contact your Service Technician	N/A

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS IOLMaster	ZEISS IOLMaster 500	6. Generation, WinPOS	ZEISS IOLMaster 5.5 / IOLMaster 500 cybersecurity update	Zeiss-IOLMaster500-CVE-2021-34527-Patch.upt
	ZEISS IOLMaster 5.5	6. Generation, WinPOS	ZEISS IOLMaster 5.5 / IOLMaster 500 cybersecurity update	Zeiss-IOLMaster500-CVE-2021-34527-Patch.upt
	ZEISS IOLMaster 700		ZEISS IOLMaster 700 cybersecurity update	IOLMaster-700-Update-Operating-System.upt

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS SL Imaging Solution	ZEISS SL Imaging Solution	SL Imaging Solution	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-10.cmd LGPO.exe PrintNightmare_1.lgpo.txt

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS SL Workstation	ZEISS SL Workstation	SL Workstation cybersecurity update	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-7.cmd LGPO.exe PrintNightmare_1.lgpo.txt

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS VISUCAM	ZEISS VISUCAM 224		VISUCAM cybersecurity update	CVE-2021-34527.zip
	ZEISS VISUCAM 524
	ZEISS Visucam 200	Computer 1969-629
	ZEISS VISUCAM PRO NM 2
	ZEISS VISUCAM NM/FA 2
	ZEISS VISUCAM 500

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS VISUPAC	ZEISS VISUPAC 500	VISUPAC 500 cybersecurity update	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-7.cmd LGPO.exe PrintNightmare_1.lgpo.txt