CVE-2022-30319

Name of the Vulnerable Software and Affected Versions Saia Burgess Controls (SBC) PCD through 2022-05-06

Description The issue concerns an authentication bypass in the S-Bus protocol used by Saia Burgess Controls (SBC) PCD controllers. The S-Bus protocol, which operates on UDP port 5050, is utilized for various engineering purposes and allows for password configuration to restrict access to sensitive functionality. However, the authentication mechanism, based on a MAC/IP whitelist with an inactivity timeout, can be bypassed by spoofing UDP traffic. An attacker capable of observing traffic can exploit this by sending arbitrary messages using the MAC/IP of an authenticated client, thereby gaining access to sensitive engineering functions such as uploading or downloading control logic and manipulating controller configurations.

Recommendations For Saia Burgess Controls (SBC) PCD through 2022-05-06, consider restricting access to the S-Bus protocol (5050/UDP) to minimize the risk of exploitation until a patch is available. As a temporary workaround, restrict the use of the S-Bus protocol to only necessary engineering purposes. Additionally, monitor network traffic for signs of spoofing attempts and implement additional security measures to prevent unauthorized access to the controllers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.