ICSA-19-155-02
·
Published 2019-06-04
·
View on CISA ICS-CERT ↗
PHOENIX CONTACT FL NAT SMx
CVSS 8.8
HIGH
Risk Summary
Successful exploitation of this vulnerability could allow unauthorized users full access to the device configuration.
CVEs (1)
Remediations
- Phoenix Contact recommends affected users operate the devices in closed networks or protected with a suitable firewall.
- Phoenix Contact recommends that users consider the following steps to protect the device from an attacker who has gained access to the closed network, or if there is a possibility that multiple users might share a VPN connection with a single endpoint IP:
- Log off from the WEB-UI immediately after administration.
- Disable the WEB-UI and use configuration access via SNMP instead. Ensure the system password is strong as this is also the SNMP write community.
- Ensure the system password is strong as this is also the SNMP write community.
- Please see VDE-2019-006 at the following location for more details.
Affected Vendors
Phoenix Contact
Affected Products (4)
Phoenix Contact
·
industrial Ethernet switch FL NAT SMCS 8TX
2989378
Phoenix Contact
·
industrial Ethernet switch FL NAT SMN 8TX-M
2702443
Phoenix Contact
·
industrial Ethernet switch FL NAT SMN 8TX
2989365
Phoenix Contact
·
industrial Ethernet switch FL NAT SMN 8TX-M-DMG
2989352
Affected Sectors
Communications, Critical Manufacturing, Information Technology
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more