CVE-2023-2186

Name of the Vulnerable Software and Affected Versions Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03

Description The issue is related to the use of uncontrolled format strings in the GTWWebMonitor.exe executable file of the SCADA Data Gateway system. An unauthenticated attacker can send specially crafted broadcast messages, including format string characters, to perform unrestricted memory reads. This can be used to repeatedly crash the GTWWebMonitor.exe process, resulting in a denial of service (DoS) of the Web Monitor. Furthermore, an authenticated user can leverage this vulnerability to leak memory from the GTWWebMonitor.exe process, which could be used in an exploit chain to gain code execution.

Recommendations For Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, consider disabling the GTWWebMonitor.exe process until a patch is available to prevent exploitation. Restrict access to the vulnerable SCADA Data Gateway to minimize the risk of unauthorized access. Avoid using the vulnerable version of the SCADA Data Gateway until an update or patch is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.