Mercury Security Firmware Vulnerability

Mercury Security Firmware Vulnerability

Notice Regarding Mercury Security Firmware Vulnerability

Jun 22, 2022

Mercury Security has been informed of a firmware security issue affecting
the following hardware: LP1501, LP1502, LP2500, LP4502, and EP4502.

This issue makes it possible for a hacker to have a level of access to these
controllers. This is done through the Web Browser that accesses and
configures Mercury controllers.

Mercury has issued new firmware that addresses these issues, and they strongly recommend updating the firmware as soon as possible. You can access this firmware for download from Mercury directly or from Keri’s downloads page under the software & downloads section

Click here to view: Downloads

A Doors.NET software-specific option is to turn Web Browser access OFF in Doors.NET software.

LP Controllers Web Browser Information:
https://help.kerisys.com/portal/en/kb/articles/lp-controller-full-controller-configuration

EP-4502 Controller Web Browser Information:
https://help.kerisys.com/portal/en/kb/articles/mercury-ep-series-full-setup-and-configuration-guide

Keri would like to emphasize that this security issue does NOT affect NXT-MSC controllers.



    • Related Articles

    • Mercury - Hardware Overview

      1.0 Introduction Doors.NET allows you to configure, command and control the SCP Series access control hardware manufactured by Mercury Security Corporation. The SCP controllers are compatible with magnetic stripe and Wiegand output readers such as ...

    • OSDP Reader Support with Real Mercury Hardware

      1.0 Introduction OSDP (Open Supervised Device Protocol) is an access control communication standard developed by the Security Industry Association (SIA) to improve interoperability among access security products and is being endorsed by all leading ...

    • Mercury EP-Series - Full Setup and Configuration Guide

      1.0 Introduction This section explains how to setup and configure all controller settings and advanced options. All these settings can be found either by logging into the controller via a web browser or by accessing the controller's 'internal ...

    • Mercury - Series 3 Hardware Notification

      1.0 Introduction Mercury is updating all their controllers and supporting peripherals with series 3 hardware revisions (the red coloured boards) and will no longer being supplying the series 2 hardware (green coloured boards). However, the series 3 ...

    • Mercury - EP Series - Full Reference Guide

      1.0 Introduction This section explains how to setup and configure all controller settings and advanced options. All these settings can be found either by logging into the controller via a web browser or by accessing the controller's 'internal ...