SSA-982399 (Last Update: 2018-12-17): Missing Authentication in TIM 1531 IRC Modules

Published

2018-12-17 00:00:00 UTC

Summary

The latest update for TIM 1531 IRC fixes a vulnerability. The devices was missing proper authentication when connecting on port 102/tcp, although configured.

An attacker needs to be able to connect to port 102/tcp of an affected device in order to exploit this vulnerability.

The vulnerability could allow an attacker to perform administrative operations.

Siemens has released updates for TIM 1531 IRC modules.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-982399.pdf