Vulnerability Description
Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify/upload a new system configuration or take the full control over the RTU using default credentials to connect to the RTU.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Martem | Telem-Gw6 Firmware | < 2.0.87-4018403-k4 |
| Martem | Telem-Gw6 | - |
| Martem | Telem-Gwm Firmware | < 2.0.87-4018403-k4 |
| Martem | Telem-Gwm | - |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSA-18-142-01MitigationThird Party AdvisoryUS Government Resource
- https://martem.eu/csa/Martem_CSA_Telem_1805183.pdfMitigationVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-18-142-01MitigationThird Party AdvisoryUS Government Resource
- https://martem.eu/csa/Martem_CSA_Telem_1805183.pdfMitigationVendor Advisory
FAQ
What is CVE-2018-10605?
CVE-2018-10605 is a vulnerability with a CVSS score of 8.8 (HIGH). Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify/upload a new system configuration or take the full control over the RTU using default credentials to con...
How severe is CVE-2018-10605?
CVE-2018-10605 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-10605?
Check the references section above for vendor advisories and patch information. Affected products include: Martem Telem-Gw6 Firmware, Martem Telem-Gw6, Martem Telem-Gwm Firmware, Martem Telem-Gwm.