SB2018102419 - Authentication bypass vulnerabilities in GAIN Electronic SAGA1-L

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018102419

SB2018102419 - Authentication bypass vulnerabilities in GAIN Electronic SAGA1-L

Published: October 24, 2018

Security Bulletin ID SB2018102419
Severity
Low
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Adjecent network
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Authentication bypass (CVE-ID: CVE-2018-17903)

The vulnerability allows an adjacent attacker to bypass authentication on the target system.

The vulnerability exists due to authentication bypass by capture-replay. An adjacent attacker can conduct replay attack and command forge any commands.


2) Improper access control (CVE-ID: CVE-2018-20783)

The vulnerability allows an adjacent attacker to bypass authentication on the target system.

The vulnerability exists due to improper access control. An adjacent attacker can force-pair the device without human interaction.


3) Improper authentication (CVE-ID: CVE-2018-17923)

The vulnerability allows a physical attacker to bypass authentication on the target system.

The vulnerability exists due to improper access control. An attacker with physical access to the product can reprogram it.


Remediation

Install update from vendor's website.

References