Vulnerability Description
When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message comes over TCP/IP the RTU will simply accept the message with no authentication challenge.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redlioncontrols | St-Ipm-6350 Firmware | 4.9.114 |
| Redlioncontrols | St-Ipm-6350 | - |
| Redlioncontrols | St-Ipm-8460 Firmware | 6.0.202 |
| Redlioncontrols | St-Ipm-8460 | - |
| Redlioncontrols | Vt-Mipm-135-D Firmware | 4.9.114 |
| Redlioncontrols | Vt-Mipm-135-D | - |
| Redlioncontrols | Vt-Mipm-245-D Firmware | 4.9.114 |
| Redlioncontrols | Vt-Mipm-245-D | - |
| Redlioncontrols | Vt-Ipm2M-213-D Firmware | 4.9.114 |
| Redlioncontrols | Vt-Ipm2M-213-D | - |
| Redlioncontrols | Vt-Ipm2M-113-D Firmware | 4.9.114 |
| Redlioncontrols | Vt-Ipm2M-113-D | - |
Related Weaknesses (CWE)
References
- https://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023-05-AuthMitigationPatchVendor Advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-01Third Party AdvisoryUS Government Resource
- https://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023-05-AuthMitigationPatchVendor Advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2023-40151?
CVE-2023-40151 is a vulnerability with a CVSS score of 10.0 (CRITICAL). When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UD...
How severe is CVE-2023-40151?
CVE-2023-40151 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-40151?
Check the references section above for vendor advisories and patch information. Affected products include: Redlioncontrols St-Ipm-6350 Firmware, Redlioncontrols St-Ipm-6350, Redlioncontrols St-Ipm-8460 Firmware, Redlioncontrols St-Ipm-8460, Redlioncontrols Vt-Mipm-135-D Firmware.