Red Lion · Red Lion Sixtrak · CVE-2023-40151
**Name of the Vulnerable Software and Affected Versions**
Red Lion SixTRAK and VersaTRAK Series RTUs (affected versions not specified)
**Description**
The issue is related to the user authentication function in the Red Lion SixTRAK and VersaTRAK Series RTUs. When user authentication is not enabled, the shell can execute commands with the highest privileges. For RTUs with authenticated users enabled, any Sixnet UDR message will meet an authentication challenge over UDP/IP, but the same message sent over TCP/IP will be accepted without an authentication challenge. This could allow a remote attacker to execute arbitrary commands with administrative privileges.
**Recommendations**
For Red Lion SixTRAK and VersaTRAK Series RTUs, consider enabling user authentication to prevent unauthorized access. As a temporary workaround, restrict access to the TCP/IP interface to minimize the risk of exploitation. Avoid sending Sixnet UDR messages over TCP/IP until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.