Share: Email | Twitter

ID

VDE-2020-053

Published

2021-03-08 14:44 (CET)

Last update

2021-03-08 14:44 (CET)

Vendor(s)

Pepperl+Fuchs SE

Product(s)

Article No° Product Name Affected Version(s)
ICRL-M-16RJ45/4CP-G-DIN <= 1.3.1
ICRL-M-8RJ45/4SFP-G-DIN <= 1.3.1

Summary

Several critical vulnerabilities within firmware.

Vulnerabilities



CVE-2020-12504
9.8
Last Update
8. Oktober 2020 08:13
Severity
9.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
Weakness
Hidden Functionality (CWE-912)
Summary
Active TFTP-Service
Details
nvd.nist.gov 
CVE-2020-12502
8.8
Last Update
8. Oktober 2020 08:12
Severity
8.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
Weakness
Cross-Site Request Forgery (CSRF) (CWE-352)
Summary

Unauthenticated Device Administration

Details
nvd.nist.gov 
CVE-2020-12503
7.2
Last Update
8. Oktober 2020 08:13
Severity
7.2 (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
Weakness
Improper Input Validation (CWE-20)
Summary

Multiple Authenticated Command Injections

Details
nvd.nist.gov 

Impact

Pepperl+Fuchs analyzed and identified affected devices.
Remote attackers may exploit multiple vulnerabilities to get access to the device and execute any program and tap information.

Solution

For vulnerability CVE-2020-12502 “Cross-Site Request Forgery (CSRF)”, CVE-2020- 12503 “Multiple Authenticated Command Injections” and CVE-2020-12504 “Active TFTP- Service”

  1. Update following products to the respective Firmware Version:
    Product ID Firmware Version
    ICRL-M-8RJ45/4SFP-G-DIN 1.4.0
    ICRL-M-16RJ45/4CP-G-DIN
  2. Deactivate TFTP-Service

Reported by

T. Weber (SEC Consult Vulnerability Lab) https://www.sec-consult.com/en/vulnerability-lab/advisories/index.html

Coordinated by CERT@VDE