SB2019013008 - Multiple vulnerabilities in AVEVA Wonderware System Platform

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Information disclosure (CVE-ID: CVE-2019-6525)

The vulnerability allows a local attacker to gain access to potentially sensitive information.

The vulnerability exists due to Wonderware System Platform uses an ArchestrA network user account for authentication of system processes and inter-node communications. A local attacker can make use of an API to obtain the credentials for this account.

2) Authorization bypass (CVE-ID: CVE-2018-19021)

The vulnerability allows an adjacent attacker to bypass authentication on the target system.

The vulnerability exists due to insufficient validation of user-supplied input. An adjacent unauthenticated attacker can supply a specially crafted script to bypass the authentication of a maintenance port of a service and cause a denial of service.

Remediation

Install update from vendor's website.

References

• https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec135.pdf
• https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-002-avea-wonderware-system-platform-vulnerability-unauthorized-access-to-credentials/