CVE-2018-4839

Name of the Vulnerable Software and Affected Versions DIGSI 4 versions prior to V4.92 EN100 Ethernet module DNP3 variant versions prior to V1.05.00 EN100 Ethernet module IEC 104 variant (all versions) EN100 Ethernet module IEC 61850 variant versions prior to V4.30 EN100 Ethernet module Modbus TCP variant (all versions) EN100 Ethernet module PROFINET IO variant (all versions) Other SIPROTEC 4 relays (all versions) Other SIPROTEC Compact relays (all versions) SIPROTEC 4 7SD80 versions prior to V4.70 SIPROTEC 4 7SJ61 versions prior to V4.96 SIPROTEC 4 7SJ62 versions prior to V4.96 SIPROTEC 4 7SJ64 versions prior to V4.96 SIPROTEC 4 7SJ66 versions prior to V4.30 SIPROTEC Compact 7SJ80 versions prior to V4.77 SIPROTEC Compact 7SK80 versions prior to V4.77

Description A vulnerability has been identified that is related to errors in authorization. An attacker with local access to the engineering system or in a privileged network position and able to obtain certain network traffic could possibly reconstruct access authorization passwords. The issue is associated with the software of Siemens EN100 switching modules, SIPROTEC protection devices, and the DIGSI 4 software package.

Recommendations For DIGSI 4 versions prior to V4.92, update to version V4.92 or later. For EN100 Ethernet module DNP3 variant versions prior to V1.05.00, update to version V1.05.00 or later. For EN100 Ethernet module IEC 61850 variant versions prior to V4.30, update to version V4.30 or later. For SIPROTEC 4 7SD80 versions prior to V4.70, update to version V4.70 or later. For SIPROTEC 4 7SJ61 versions prior to V4.96, update to version V4.96 or later. For SIPROTEC 4 7SJ62 versions prior to V4.96, update to version V4.96 or later. For SIPROTEC 4 7SJ64 versions prior to V4.96, update to version V4.96 or later. For SIPROTEC 4 7SJ66 versions prior to V4.30, update to version V4.30 or later. For SIPROTEC Compact 7SJ80 versions prior to V4.77, update to version V4.77 or later. For SIPROTEC Compact 7SK80 versions prior to V4.77, update to version V4.77 or later. For EN100 Ethernet module IEC 104 variant, EN100 Ethernet module Modbus TCP variant, EN100 Ethernet module PROFINET IO variant, Other SIPROTEC 4 relays, and Other SIPROTEC Compact relays, at the moment, there is no information about a newer version that contains a fix for this vulnerability.