CVE-2022-30272

Name of the Vulnerable Software and Affected Versions Motorola ACE1000 RTU through 2022-05-02

Description The issue concerns the mishandling of firmware integrity in the Motorola ACE1000 RTU. Firmware updates can be performed using either the STS software suite or the ACE1000 Easy Configurator. Updates via the Easy Configurator are done through the Web UI, where various images can be installed. For the Front End Processor (FEP) module, updates are performed via the SSH interface, where a .hex file is transferred and a bootloader script is invoked. The firmware images lack authentication, relying only on insecure checksums for integrity checks. This vulnerability is related to weaknesses in the checksum calculation algorithm, which could allow a remote attacker to execute arbitrary code.

Recommendations For Motorola ACE1000 RTU through 2022-05-02, consider disabling firmware updates via the Web UI and SSH interface until a secure update mechanism is implemented. Restrict access to the Web UI and SSH interface to minimize the risk of exploitation. Avoid using insecure checksums for integrity checks; instead, implement a secure authentication mechanism for firmware updates, such as firmware signing. At the moment, there is no information about a newer version that contains a fix for this vulnerability.