SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-929833668] PHOENIX CONTACT FL SWITCH

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2018-01-11OtherPHOENIX CONTACTIlya Karpov and Evgeniy Druzhinin of Positive Technologies discovered these vulnerabilities. PHOENIX CONTACT reported to CERT@VDN/ACVE-2017-1674 CVE-2017-1674 N/AN/AN/A

Source

						
							
								
#
# PHOENIX CONTACT FL SWITCH
#


### VULNERABLE VENDOR
PHOENIX CONTACT


### VULNERABLE PRODUCT
FL SWITCH 


### RESEARCHER
Ilya Karpov and Evgeniy Druzhinin of Positive Technologies discovered these vulnerabilities. PHOENIX CONTACT reported to CERT@VDE


### AFFECTED PRODUCTS
All FL SWITCH 3xxx, 4xxx, and 48xxx Series products running firmware Version 1.0 to 1.32 are affected


### IMPACT
Successful exploitation of these vulnerabilities may allow an unauthenticated remote attacker to gain administrative privileges and expose information to unauthenticated users.


### VULNERABILITY OVERVIEW
IMPROPER AUTHORIZATION CWE-285
A remote unauthenticated attacker may be able to craft special HTTP requests allowing an attacker to bypass web-service authentication allowing the attacker to obtain administrative privileges on the device.
CVE-2017-16743 has been assigned to this vulnerability.
A CVSS v3 base score of 9.8 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)


INFORMATION EXPOSURE CWE-200
A remote unauthenticated attacker may be able to use Monitor Mode on the device to read diagnostic information.
CVE-2017-16741 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)





### BACKGROUND
Critical Infrastructure Sectors: Communications, Critical Manufacturing, Information Technology
Countries/Areas Deployed: Worldwide
Company Headquarters Location: Germany




### MITIGATION

PHOENIX CONTACT recommends that affected users upgrade to firmware Version 1.33 or higher. The updated firmware may be downloaded from the following locations:

FL SWITCH 3005:

http://www.phoenixcontact.net/qr/2891030/firmware_update


FL SWITCH 3005T:

http://www.phoenixcontact.net/qr/2891032/firmware_update


FL SWITCH 3004T-FX
http://www.phoenixcontact.net/qr/2891033/firmware_update


FL SWITCH 3004T-FX ST
http://www.phoenixcontact.net/qr/2891034/firmware_update


FL SWITCH 3008
http://www.phoenixcontact.net/qr/2891031/firmware_update


FL SWITCH 3008T
http://www.phoenixcontact.net/qr/2891035/firmware_update


FL SWITCH 3006T-2FX
http://www.phoenixcontact.net/qr/2891036/firmware_update


FL SWITCH 3006T-2FX ST
http://www.phoenixcontact.net/qr/2891037/firmware_update


FL SWITCH 3012E-2SFX
http://www.phoenixcontact.net/qr/2891067/firmware_update


FL SWITCH 3016E
http://www.phoenixcontact.net/qr/2891066/firmware_update


FL SWITCH 3016
http://www.phoenixcontact.net/qr/2891058/firmware_update


FL SWITCH 3016T
http://www.phoenixcontact.net/qr/2891059/firmware_update


FL SWITCH 3006T-2FX SM
http://www.phoenixcontact.net/qr/2891060/firmware_update


FL SWITCH 4008T-2SFP
http://www.phoenixcontact.net/qr/2891062/firmware_update


FL SWITCH 4008T-2GT-4FX SM
http://www.phoenixcontact.net/qr/2891061/firmware_update


FL SWITCH 4008T-2GT-3FX SM
http://www.phoenixcontact.net/qr/2891160/firmware_update


FL SWITCH 4808E-16FX LC-4GC
http://www.phoenixcontact.net/qr/2891073/firmware_update


FL SWITCH 4808E-16FX SM-4GC
http://www.phoenixcontact.net/qr/2891080/firmware_update


FL SWITCH 4808E-16FX SM ST-4GC
http://www.phoenixcontact.net/qr/2891086/firmware_update


FL SWITCH 4808E-16FX ST-4GC
http://www.phoenixcontact.net/qr/2891085/firmware_update


FL SWITCH 4808E-16FX-4GC
http://www.phoenixcontact.net/qr/2891079/firmware_update


FL SWITCH 4808E-16FX SM LC-4GC
http://www.phoenixcontact.net/qr/2891074/firmware_update


FL SWITCH 4012T 2GT 2FX
http://www.phoenixcontact.net/qr/2891063/firmware_update


FL SWITCH 4012T-2GT-2FX ST
http://www.phoenixcontact.net/qr/2891161/firmware_update


FL SWITCH 4824E-4GC
http://www.phoenixcontact.net/qr/2891072/firmware_update


FL SWITCH 4800E-24FX-4GC
http://www.phoenixcontact.net/qr/2891102/firmware_update


FL SWITCH 4800E-24FX SM-4GC
http://www.phoenixcontact.net/qr/2891104/firmware_update


FL SWITCH 4800E-24FX SM-4GC
http://www.phoenixcontact.net/qr/2891120/firmware_update


FL SWITCH 3012E-2FX SM
http://www.phoenixcontact.net/qr/2891119/firmware_update


FL SWITCH 4000T-8POE-2SFP-R
http://www.phoenixcontact.net/qr/2891162/firmware_update