Public ICS Disclosures – Week of 06-01-19

This week we have five vendor disclosures for products from Gemalto, ABB (3), and TECSON/GOK. There is also one new Windows® RDP advisory from a vendor.

RDP Vulnerability Disclosures

Eaton

Gemalto Advisory

Gemalto published an advisory describing a DLL vulnerability in the Gemalto Sentinel SuperPro, Sentinel Hardware Keys and Sentinel UltraPro Products. Details are only available to registered customers.

ABB Advisories

1. ABB has published an advisory describing multiple vulnerabilities in the ABB CP635

HMI. The vulnerabilities were reported by Xen1thLabs. ABB has new versions that mitigate the vulnerabilities. There is no indication that the researchers have been provided an opportunity to verify the efficacy of the fix.

The three reported vulnerabilities are:

• Outdated software components;

• Hard-coded credentials; and

• Absence of signature verification

2. ABB has published an advisory describing multiple vulnerabilities in the ABB PB610. The vulnerabilities were reported by Xen1thLabs. ABB has new versions that mitigate the vulnerabilities. There is no indication that the researchers have been provided an opportunity to verify the efficacy of the fix.

The six reported vulnerabilities are:

• Hidden administrative accounts;

• HTTP server authentication bypass;

• FTP server path traversal;

• HTTP server uncontrolled format string;

• FTP server uncontrolled format string; and

• HTTP server stack-based buffer overflow

3. ABB has published an advisory for multiple vulnerabilities in the ABB CP651 HMI. The vulnerabilities were reported by Xen1thLabs. ABB has new versions that mitigate the vulnerabilities. There is no indication that the researchers have been provided an opportunity to verify the efficacy of the fix.

The three reported vulnerabilities are:

• Outdated software components;

• Hard-coded credentials; and

• Absence of signature verification.

TESCON/GOK Advisory

CERT VDE published an advisory describing an improper access control vulnerability in the TESCON/GOK type LX-Net, LX-Q-Net, e-litro net, SmartBox4 LAN and SmartBox4 pro LAN devices. The vulnerabilities were reported by Maxim Rupp. TESCON/GOK has a new firmware version that mitigates the vulnerability. There is no indication that Maxim has been provided an opportunity to verify the efficacy of the fix.