#VU18693 Improper access control in PLCNext AXC F 2152
Vulnerability identifier: #VU18693
Vulnerability risk: Medium
CVSSv3.1: 5.9 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-284
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
PLCNext AXC F 2152
Server applications /
SCADA systems
Vendor: Phoenix Contact GmbH
Description
The vulnerability allows an attacker to gain unauthorized access to sensitive information.
The vulnerability exists due to improper access restrictions when an attacker with physical access to the device can manipulate SD card data. An attacker can bypass the authentication of the device.
- AXC F 2152: article number 2404267
- AXC F 2152: article number 1046568 (Starterkit)
Mitigation
Install updates from vendor's website.
Vulnerable software versions
PLCNext AXC F 2152: 1.0.0 - 1.20
External links
http://ics-cert.us-cert.gov/advisories/ICSA-19-155-01
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
