CVE-2017-7928

Name of the Vulnerable Software and Affected Versions Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway versions R202, R203, R203-V1, R203-V2, R204, R204-V1

Description An issue with improper access control was found, which may allow unauthorized communications to downstream devices due to the device not properly enforcing access control while configured for NAT port forwarding.

Recommendations For versions R202, R203, R203-V1, R203-V2, R204, R204-V1, consider restricting NAT port forwarding configurations to minimize the risk of exploitation until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.