|Article No°||Product Name||Affected Version(s)|
|1504460000||IE-GW-MB-2TX-1RS232/485||= V1.0 (Build 14050818)|
|1504470000||IE-GWT-MB-2TX-1RS232/485||= V1.0 (Build 14050818)|
Multiple issues have been found in the affected products. See CVE descriptions for details.
Insufficient password requirements for the web application on the affected products may allow an attacker to gain access by brute-forcing account passwords.
An attacker may be able to intercept weakly encrypted passwords and gain administrative access to the affected products.
A Buffer overflow in the built-in web server of the affected products allows remote attackers to initiate DoS, and probably to execute arbitrary code.
A predictable mechanism of generating tokens in the affected products allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism.
Sensitive information is sent to the web server of the affected products in cleartext, which may allow an attacker to discover the credentials if they are able to observe traffic between the web browser and the server.
An Integer overflow in the built-in web server of the affected products allows remote attackers to initiate DoS.
The application's configuration file of the affected products contains parameters that represent passwords in cleartext.
An attacker can access sensitive information (e.g., conduct username disclosure attacks) on the built-in web-service of the affected products without authorization.
A high rate of transit traffic on the affected products may cause a low-memory condition and a denial of service.
These vulnerabilities may allow an attacker to DoS affected devices or access sensitive information or gain administrative access. See vulnerability descriptions for details.
For all potential vulnerabilities, customers can download a patched firmware to secure their Modbus TCP/RTU Gateways properly. Please download and install the latest firmware for your device by following the procedure below:
Got to www.weidmueller.com
Find below appropriate patched firmware versions for all affected products.
|Product number||Product name||Patched firmware version|
|1504460000||IE-GW-MB-2TX-1RS232/485||V2.1 (Build 21072817)|
Weidmueller thanks CERT@VDE for the support with this publication.