Lucene search

[email protected]NVD:CVE-2023-42770

HistoryNov 21, 2023 - 1:15 a.m.

CVE-2023-42770

2023-11-2101:15:07

CWE-306

CWE-288

[email protected]

web.nvd.nist.gov

red lion sixtrak

versatrak series

rtus

authenticated users

udr-a

authentication challenge

udp/ip

tcp/ip

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

39.3%

JSON

Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TCP/IP the RTU will simply accept the message with no authentication challenge.

Affected configurations

NVD

Node

redlioncontrolsst-ipm-6350_firmwareMatch4.9.114

AND

redlioncontrolsst-ipm-6350Match-

Node

redlioncontrolsst-ipm-8460_firmwareMatch6.0.202

AND

redlioncontrolsst-ipm-8460Match-

Node

redlioncontrolsvt-mipm-135-d_firmwareMatch4.9.114

AND

redlioncontrolsvt-mipm-135-dMatch-

Node

redlioncontrolsvt-mipm-245-d_firmwareMatch4.9.114

AND

redlioncontrolsvt-mipm-245-dMatch-

Node

redlioncontrolsvt-ipm2m-213-d_firmwareMatch4.9.114

AND

redlioncontrolsvt-ipm2m-213-dMatch-

Node

redlioncontrolsvt-ipm2m-113-d_firmwareMatch4.9.114

AND

redlioncontrolsvt-ipm2m-113-dMatch-

References

https://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023-05-Authentication-Bypass-and-Remote-Code-Execution

www.cisa.gov/news-events/ics-advisories/icsa-23-320-01

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

39.3%

JSON

Related for NVD:CVE-2023-42770

cvelist1 prion1 cve1 ics1