Esta página es para informar a los propietarios de instrumentos de diagnóstico oftálmico de ZEISS sobre:

Actualización de seguridad de Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 ("PrintNightmare")

"PrintNightmare" es el nombre que recibe un fallo de seguridad que afecta a los equipos que funcionan con sistemas operativos de Microsoft Windows. En palabras de Microsoft, "existe una vulnerabilidad de ejecución remota de código cuando el servicio Windows Print Spooler realiza incorrectamente operaciones de archivos privilegiados. Un atacante que aproveche con éxito esta vulnerabilidad podría ejecutar código arbitrario con privilegios de SISTEMA. Un atacante podría instalar programas, ver, cambiar o eliminar datos, o crear nuevas cuentas con derechos de usuario completos".

"PrintNightmare" no afecta ni a la seguridad ni al funcionamiento de los productos ZEISS. Sin embargo, le facilitamos una actualización de seguridad (parche) para el equipo destinada a solucionar el fallo de seguridad "PrintNightmare".

ZEISS ha comprobado qué consecuencias tienen los fallos de seguridad de sus productos en sistemas operativos Windows. Únicamente requieren una actualización los productos que se indican más abajo.

Consulte las instrucciones de instalación de la actualización que correspondan en la tabla siguiente, de forma que pueda subsanarse el fallo de seguridad en su equipo ZEISS. Diríjase al equipo de asistencia técnica local si necesita ayuda para actualizar el equipo ZEISS.

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CIRRUS	ZEISS CIRRUS 500/5000/6000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS CIRRUS	ZEISS CIRRUS 400/4000/500/5000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CIRRUS photo 600/800	ZEISS CIRRUS photo 600/800	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS CIRRUS photo 600/800	ZEISS CIRRUS photo 600/800	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“)	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS ATLAS 9000	ZEISS ATLAS 9000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS ATLAS 9000	ZEISS ATLAS 9000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS CLARUS 500/700	ZEISS CLARUS 500/700	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS HFA3	ZEISS HFA3	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS Note: the HFA3 is shipped with the instrument running in kiosk mode. To install the patch, disable Kiosk mode (Refer to instructions in the HFA3 IFU to access the Windows desktop), login as the IT Administrator user, run the “Kiosk OFF” shortcut on the desktop, and reboot the instrument.	1. KB5001402 2. KB5004948
ZEISS HFA3	ZEISS HFA3	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS Note: the HFA3 is shipped with the instrument running in kiosk mode. To install the patch, disable Kiosk mode (Refer to instructions in the HFA3 IFU to access the Windows desktop), login as the IT Administrator user, run the “Kiosk OFF” shortcut on the desktop, and reboot the instrument.	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS PLEX Elite 9000	ZEISS PLEX Elite 9000	Windows 10	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS PLEX Elite 9000	ZEISS PLEX Elite 9000	Windows 7	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 7 OS	Follow instructions (see column to the left titled “Link to Instructions for Updating ZEISS Device”)

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS PRIMUS 200	ZEISS PRIMUS 200	Windows 10: serial numbers starting with 200-3XXXX and 200-5XXXX	Microsoft Windows Print Spooler Vulnerability CVE-2021-34527 (“PrintNightmare“) Cybersecurity Update For Windows 10 OS	1. KB5001402 2. KB5004948
ZEISS PRIMUS 200	ZEISS PRIMUS 200	Windows 7: serial numbers starting with 200-0XXXX and 200-2XXXX	Please contact your Service Technician	N/A

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS IOLMaster	ZEISS IOLMaster 500	6. Generation, WinPOS	ZEISS IOLMaster 5.5 / IOLMaster 500 cybersecurity update	Zeiss-IOLMaster500-CVE-2021-34527-Patch.upt
	ZEISS IOLMaster 5.5	6. Generation, WinPOS	ZEISS IOLMaster 5.5 / IOLMaster 500 cybersecurity update	Zeiss-IOLMaster500-CVE-2021-34527-Patch.upt
	ZEISS IOLMaster 700		ZEISS IOLMaster 700 cybersecurity update	IOLMaster-700-Update-Operating-System.upt

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS SL Imaging Solution	ZEISS SL Imaging Solution	SL Imaging Solution	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-10.cmd LGPO.exe PrintNightmare_1.lgpo.txt

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS SL Workstation	ZEISS SL Workstation	SL Workstation cybersecurity update	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-7.cmd LGPO.exe PrintNightmare_1.lgpo.txt

	Model	OS	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS VISUCAM	ZEISS VISUCAM 224		VISUCAM cybersecurity update	CVE-2021-34527.zip
	ZEISS VISUCAM 524
	ZEISS Visucam 200	Computer 1969-629
	ZEISS VISUCAM PRO NM 2
	ZEISS VISUCAM NM/FA 2
	ZEISS VISUCAM 500

	Model	Link to Instructions for Updating ZEISS Device	Link to Download (use Internet Explorer or Edge)
ZEISS VISUPAC	ZEISS VISUPAC 500	VISUPAC 500 cybersecurity update	3 Files to download (unpack from zip): Install_Patch_PrinterNightmare_CVE-2021-34527_ Win-7.cmd LGPO.exe PrintNightmare_1.lgpo.txt