A number of doubtlessly critical vulnerabilities have been not too long ago discovered and patched in routers made by Germany-based industrial and automation options supplier Helmholz.
The existence of the safety holes got here to gentle final week, when Germany’s CERT@VDE revealed an advisory describing eight vulnerabilities found in Helmholz’s REX 100 router, which allows organizations to remotely entry and handle industrial networks.
Helmholz routers are used worldwide, distributed by way of a community of companions throughout 60 international locations, together with in North America, Europe and Asia.
Based on CERT@VDE’s advisory, three of the vulnerabilities have a ‘excessive severity’ score, all of them permitting an attacker with excessive privileges to execute arbitrary OS instructions utilizing specifically crafted requests.
The remaining points, labeled as ‘medium severity’, might be exploited for SQL injection, XSS, and DoS assaults (together with unauthenticated DoS).
The seller has patched the vulnerabilities with the discharge of firmware model 2.3.3 for REX 100 routers. Prior firmware variations are impacted.
The vulnerabilities have been found throughout lab workout routines organized at an Austrian college by industrial cybersecurity firm CyberDanube, which, regardless of their official CVSS scores, believes a few of the flaws are important.
CyberDanube’s Sebastian Dietz informed SecurityWeek that whereas a majority of the REX 100 vulnerabilities require authentication for exploitation, the units have default credentials that might permit an attacker to beat this requirement. Commercial. Scroll to proceed studying.
Dietz defined that a few of the flaws can permit an attacker to execute arbitrary code on the focused machine as root, enabling them to trigger disruption, intercept communications, or pivot to different methods on the community.
One other potential safety danger flagged by CyberDanube is expounded to the very fact the economic router is completely related to the seller’s cloud surroundings, which allows customers to handle and configure units on an industrial community by way of an internet interface.
If attackers have been to seek out vulnerabilities within the implementation of this cloud system, they can attain different clients’ units, which might have ‘devastating’ penalties, Dietz speculated.
Associated: Crucial Vulnerabilities Expose mbNET.mini, Helmholz Industrial Routers to Assaults
Associated: 4-Religion Industrial Router Vulnerability Exploited in Assaults
Associated: Practice Brakes Can Be Hacked Over Radio—And the Trade Knew for 20 Years
