Carlos Antonini

**Name of the Vulnerable Software and Affected Versions** SE-elektronic GmbH E-DDC3.3 versions 03.07.03 and higher **Description** The issue is related to a remote command execution vulnerability in the web configuration functionality of the device, allowing an attacker to send different commands from the operating system to the system. This is due to incorrect code generation management in the web interface of the device's firmware. An attacker could exploit this by sending specially crafted web requests via the CGI protocol, potentially allowing them to execute arbitrary commands. Additionally, there is a mention of an uncontrolled resource consumption issue that could allow an attacker to interrupt the availability of the administration panel by sending multiple ICMP packets. **Recommendations** For versions 03.07.03 and higher, consider disabling the web configuration functionality until a patch is available to prevent remote command execution. As a temporary workaround, restrict access to the administration panel to minimize the risk of exploitation via ICMP packets. Avoid using the CGI protocol in the affected web interface until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SE-elektronic GmbH E-DDC3.3 versions 03.07.03 and higher **Description** The issue is related to uncontrolled resource consumption in the web interface of the E-DDC3.3 automation station software. This could allow a remote attacker to cause a denial of service by sending multiple ICMP packets, interrupting the availability of the administration panel. **Recommendations** For versions 03.07.03 and higher, consider restricting access to the administration panel to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the number of ICMP packets that can be sent to the device to prevent uncontrolled resource consumption.

**Name of the Vulnerable Software and Affected Versions** Campbell Scientific dataloggers versions CR6, CR300, CR800, CR1000, CR3000 **Description** The issue allows an attacker to download configuration files, potentially containing sensitive internal network information. By default, the devices have HTTP and PakBus enabled, making them vulnerable via the PakBus port. An attacker could exploit this to download, modify, and upload new configuration files. **Recommendations** For Campbell Scientific dataloggers versions CR6, CR300, CR800, CR1000, CR3000, consider disabling the PakBus port or restricting access to it until a patch is available. As a temporary workaround, restrict access to the default HTTP configuration to minimize the risk of exploitation. Avoid using the default configuration settings for the PakBus port until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.