CVE-2018-4840

Name of the Vulnerable Software and Affected Versions DIGSI 4 versions prior to V4.92 EN100 Ethernet module DNP3 variant versions prior to V1.05.00 EN100 Ethernet module IEC 104 variant (all versions) EN100 Ethernet module IEC 61850 variant versions prior to V4.30 EN100 Ethernet module Modbus TCP variant (all versions) EN100 Ethernet module PROFINET IO variant (all versions)

Description A vulnerability allows an unauthenticated remote user to upload a modified device configuration, overwriting access authorization passwords. This issue is related to inadequate access control in the device engineering mechanism. Exploitation of the vulnerability may allow a remote attacker to gain full control over the device by uploading a modified configuration file that overwrites access passwords.

Recommendations For DIGSI 4 versions prior to V4.92, update to version V4.92 or later. For EN100 Ethernet module DNP3 variant versions prior to V1.05.00, update to version V1.05.00 or later. For EN100 Ethernet module IEC 104 variant, restrict access to the device until a fix is available. For EN100 Ethernet module IEC 61850 variant versions prior to V4.30, update to version V4.30 or later. For EN100 Ethernet module Modbus TCP variant, restrict access to the device until a fix is available. For EN100 Ethernet module PROFINET IO variant, restrict access to the device until a fix is available.