#VU6891 Authentication bypass in PowerAgent SC3 Site Controller - CVE-2017-6039

Cybersecurity Help s.r.o.

Published: 2017-06-02

Vulnerability identifier: #VU6891

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2017-6039

CWE-ID: CWE-259

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PowerAgent SC3 Site Controller
Web applications / Other software

Vendor: Phoenix Broadband Technologies, LLC

Description
The vulnerability allows a remote attacker to bypass authentication on the target system.

The weakness exists due to use of hard-coded password. A remote attacker can gain unauthorized access to the battery monitoring system.

Mitigation
Update to version 6.87.

Vulnerable software versions

PowerAgent SC3 Site Controller: All versions

External links
https://ics-cert.us-cert.gov/advisories/ICSA-17-152-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Authentication bypass in Phoenix Broadband Technologies PowerAgent SC3 Site Controller