Vulnerability Description
The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB DIO STBNIC2212 and STBNIP2* modules, uses hardcoded passwords for the (1) AUTCSE, (2) AUT_CSE, (3) fdrusers, (4) ftpuser, (5) loader, (6) nic2212, (7) nimrohs2212, (8) nip2212, (9) noe77111_v500, (10) ntpupdate, (11) pcfactory, (12) sysdiag, (13) target, (14) test, (15) USER, and (16) webserver accounts, which makes it easier for remote attackers to obtain access via the (a) TELNET, (b) Windriver Debug, or (c) FTP port.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Quantum Ethernet Module 140Cpu65150 | <= 3.5 |
| Schneider-Electric | Quantum Ethernet Module 140Cpu65160 | <= 3.5 |
| Schneider-Electric | Quantum Ethernet Module 140Cpu65260 | <= 3.5 |
| Schneider-Electric | Quantum Ethernet Module 140Noe77100 | <= 3.3 |
| Schneider-Electric | Quantum Ethernet Module 140Noe77101 | <= 4.9 |
| Schneider-Electric | Quantum Ethernet Module 140Noe77111 | <= 5.0 |
| Schneider-Electric | Premium Ethernet Module Tsxety4103 | <= 5.0 |
| Schneider-Electric | Premium Ethernet Module Tsxety5103 | <= 5.0 |
| Schneider-Electric | Premium Ethernet Module Tsxp57163M | <= 4.9 |
| Schneider-Electric | Premium Ethernet Module Tsxp572634M | <= 4.9 |
| Schneider-Electric | Premium Ethernet Module Tsxp573634M | <= 4.9 |
| Schneider-Electric | Premium Ethernet Module Tsxp574634M | <= 3.5 |
| Schneider-Electric | Premium Ethernet Module Tsxp575634M | <= 3.5 |
| Schneider-Electric | Premium Ethernet Module Tsxp576634M | <= 3.5 |
| Schneider-Electric | M340 Ethernet Module Bmxnoe0100 | <= 2.3 |
| Schneider-Electric | M340 Ethernet Module Bmxnoe0110 | <= 4.65 |
| Schneider-Electric | M340 Ethernet Module Bmxp342020 | <= 2.2 |
| Schneider-Electric | M340 Ethernet Module Bmxp342030 | <= 2.2 |
| Schneider-Electric | Stb Dio Ethernet Module Stbnic2212 | <= 2.10 |
| Schneider-Electric | Stb Dio Ethernet Module Stbnip2212 | <= 2.73 |
References
- http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1
- http://secunia.com/advisories/47723
- http://www.securityfocus.com/bid/51605
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72587
- http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1
- http://secunia.com/advisories/47723
- http://www.securityfocus.com/bid/51605
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72587
FAQ
What is CVE-2011-4859?
CVE-2011-4859 is a vulnerability with a CVSS score of 10.0 (HIGH). The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB ...
How severe is CVE-2011-4859?
CVE-2011-4859 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4859?
Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Quantum Ethernet Module 140Cpu65150, Schneider-Electric Quantum Ethernet Module 140Cpu65160, Schneider-Electric Quantum Ethernet Module 140Cpu65260, Schneider-Electric Quantum Ethernet Module 140Noe77100, Schneider-Electric Quantum Ethernet Module 140Noe77101.