SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-326834588] Ctek, Inc. SkyRouter

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-09-21OtherCtek, Inc.Maxim Rupp reported the vulnerability to ICS-CERT. N/ACVE-2017-1400 N/AN/AN/A

Source

						
							
								
#
# Ctek, Inc. SkyRouter
#


### VULNERABLE VENDOR
Ctek, Inc.


### VULNERABLE PRODUCT
SkyRouter



### RESEARCHER
Maxim Rupp reported the vulnerability to ICS-CERT.



### AFFECTED PRODUCTS

The following versions of SkyRouter, a wireless and automation solution, are affected:

SkyRouter Series 4200 and 4400 all versions prior to V6.00.11



### IMPACT

Successful exploitation of this vulnerability may allow an unauthorized user to view and edit settings without authenticating.



### VULNERABILITY OVERVIEW

IMPROPER AUTHENTICATION CWE-287
By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the application without authenticating.
CVE-2017-14000 has been assigned to this vulnerability.
A CVSS v3 base score of 8.6 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L)





### BACKGROUND

Critical Infrastructure Sectors: Commercial Facilities, Communications, Food and Agriculture, Transportation Systems, and Water and Wastewater Systems
Countries/Areas Deployed: Worldwide
Company Headquarters Location: San Pedro, California




### MITIGATION

Ctek, Inc., reports they have addressed this issue and addressed additional security requirements in their latest security release V6.00.11, which is now available on all models currently in production. These models are identified as Z4500, Z4550, and Z4400. The update can be obtained via the wireless device's Tool and Utilities Section, which provides an Over-The-Air Firmware update mechanism. Ctek, Inc., reports that due to industry demand, wireless carriers are rapidly eliminating 2G and 3G CDMA service and they will not be creating any additional update releases for those products.

Ctek, Inc., reports they are now selling a 4G version of the SkyRouter which they confirm the latest firmware release in this product does address the issues that were reported in the 3G device. They no longer sell the 2G/3G version of the SkyRouter on which the vulnerability was originally reported.