SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-374287473] ABB Ellipse

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-12-19OtherABBABB self-reported the vulnerability to ICS-CERT.N/ACVE-2017-1673 N/AN/AN/A

Source

						
							
								
#
# ABB Ellipse
#


### VULNERABLE VENDOR
ABB


### VULNERABLE PRODUCT
Ellipse 


### RESEARCHER
ABB self-reported the vulnerability to ICS-CERT.


### AFFECTED PRODUCTS
ABB reports that the vulnerability affects Ellipse 8.3 through Ellipse 8.9 released prior to December 2017 (including Ellipse Select)


### IMPACT
Successful exploitation of this vulnerability could allow an attacker to discover authentication credentials by sniffing the network traffic.


### VULNERABILITY OVERVIEW
UNPROTECTED TRANSPORT OF CREDENTIALS CWE-523
A vulnerability exists in the authentication of Ellipse to LDAP/AD using the LDAP protocol.
An attacker could exploit the vulnerability by sniffing local network traffic, allowing the discovery of authentication credentials.
CVE-2017-16731 has been assigned to this vulnerability.
A CVSS v3 base score of 6.5 has been assigned; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)





### BACKGROUND
Critical Infrastructure Sectors: Critical Manufacturing, Energy
Countries/Areas Deployed: Worldwide
Company Headquarters Location: Switzerland




### MITIGATION

ABB has released the following product updates to mitigate the vulnerability:

Ellipse 8.5.26 Release 7, Dec 2017
Ellipse 8.6.21 Release 5, Dec 2017
Ellipse 8.7.18 Release 7, Dec 2017
Ellipse 8.8.12 Release 7, Dec 2017
Ellipse 8.9.6 Release 7, Dec 2017
Please see ABB Cyber Security Advisory number Ellipse201703 for more information about this vulnerability, as well as additional mitigations and workarounds at the following location:

http://search-ext.abb.com/library/Download.aspx?DocumentID=9AKK107045A7341&Action=Launch