CVE-2018-4838

Name of the Vulnerable Software and Affected Versions EN100 Ethernet module IEC 61850 variant versions prior to V4.30 EN100 Ethernet module DNP3 variant versions prior to V1.04 EN100 Ethernet module PROFINET IO variant (all versions) EN100 Ethernet module Modbus TCP variant (all versions) EN100 Ethernet module IEC 104 variant versions prior to V1.22

Description A vulnerability has been identified that allows an unauthenticated user to upgrade or downgrade the firmware of the device using the web interface (TCP/80), potentially installing older versions with known vulnerabilities. The issue is related to inadequate access control, which can be exploited remotely without authentication, enabling the installation of firmware, including versions containing known vulnerabilities.

Recommendations For EN100 Ethernet module IEC 61850 variant versions prior to V4.30, update to version V4.30 or later. For EN100 Ethernet module DNP3 variant versions prior to V1.04, update to version V1.04 or later. For EN100 Ethernet module PROFINET IO variant, restrict access to the web interface (TCP/80) until a fix is available. For EN100 Ethernet module Modbus TCP variant, restrict access to the web interface (TCP/80) until a fix is available. For EN100 Ethernet module IEC 104 variant versions prior to V1.22, update to version V1.22 or later.