#VU83337 Authentication bypass using an alternate path or channel in Red Lion Controls Hardware solutions


Published: 2023-11-21

Vulnerability identifier: #VU83337

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-42770

CWE-ID: CWE-288

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ST-IPm-8460
Hardware solutions / Routers & switches, VoIP, GSM, etc
ST-IPm-6350
Hardware solutions / Routers & switches, VoIP, GSM, etc
VT-mIPm-135-D
Hardware solutions / Routers & switches, VoIP, GSM, etc
VT-mIPm-245-D
Hardware solutions / Routers & switches, VoIP, GSM, etc
VT-IPm2m-213-D
Hardware solutions / Routers & switches, VoIP, GSM, etc
VT-IPm2m-113-D
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: Red Lion Controls

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an authentication bypass using an alternate path. A remote attacker can gain access to target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ST-IPm-8460: 6.0.202

ST-IPm-6350: 4.9.114

VT-mIPm-135-D: 4.9.114

VT-mIPm-245-D: 4.9.114

VT-IPm2m-213-D: 4.9.114

VT-IPm2m-113-D: 4.9.114

External links
http://www.cisa.gov/news-events/ics-advisories/icsa-23-320-01
http://
http://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023-05-Authentication-Bypass-and-Remote-Code-Execution

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Red Lion Sixnet RTUs