CVE-2023-42770 — CRITICAL (10.0)

Vulnerability Description

Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TCP/IP the RTU will simply accept the message with no authentication challenge.

CVSS Score

10.0

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redlioncontrols	St-Ipm-6350 Firmware	4.9.114
Redlioncontrols	St-Ipm-6350	-
Redlioncontrols	St-Ipm-8460 Firmware	6.0.202
Redlioncontrols	St-Ipm-8460	-
Redlioncontrols	Vt-Mipm-135-D Firmware	4.9.114
Redlioncontrols	Vt-Mipm-135-D	-
Redlioncontrols	Vt-Mipm-245-D Firmware	4.9.114
Redlioncontrols	Vt-Mipm-245-D	-
Redlioncontrols	Vt-Ipm2M-213-D Firmware	4.9.114
Redlioncontrols	Vt-Ipm2M-213-D	-
Redlioncontrols	Vt-Ipm2M-113-D Firmware	4.9.114
Redlioncontrols	Vt-Ipm2M-113-D	-

Related Weaknesses (CWE)

CWE-306 CWE-288

References

https://https://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023MitigationPatchVendor Advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-01Third Party AdvisoryUS Government Resource
https://https://support.redlion.net/hc/en-us/articles/19339209248269-RLCSIM-2023MitigationPatchVendor Advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-01Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2023-42770?

CVE-2023-42770 is a vulnerability with a CVSS score of 10.0 (CRITICAL). Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TC...

How severe is CVE-2023-42770?

CVE-2023-42770 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2023-42770?

Check the references section above for vendor advisories and patch information. Affected products include: Redlioncontrols St-Ipm-6350 Firmware, Redlioncontrols St-Ipm-6350, Redlioncontrols St-Ipm-8460 Firmware, Redlioncontrols St-Ipm-8460, Redlioncontrols Vt-Mipm-135-D Firmware.