ICSA-23-082-03 · Published 2023-04-03 · View on CISA ICS-CERT ↗

SAUTER EY-modulo 5 Building Automation Stations

CVSS 8.8 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could lead to privilege escalation, unauthorized execution of actions, a denial-of-service condition, or retrieval of sensitive information.

CVEs (5)

CVE-2023-28650 CVE-2023-28655 CVE-2023-22300 CVE-2023-27927 CVE-2023-28652

Remediations

According to SAUTER, the EY-modulo 5 Building Automation Stations product line does not support encryption on its communication protocols. As such, it is not appropriate for open networks.
Instead of using EY-AS525F001 with moduWeb, SAUTER recommends using EY6AS80F021 with moduWeb Unity. moduWeb Unity is the current system and supports encrypted communication with TLS.
SAUTER recommends users take all necessary measures to protect the integrity of building automation networks, restrict access to the devices, and leverage all appropriate means and policies to minimize risks. Users should evaluate and upgrade legacy systems to current solutions where necessary.

Affected Vendors

SAUTER

Affected Products (1)

SAUTER · EY-modulo 5 Building Automation Station EY-AS525F001

Affected Sectors

Critical Manufacturing, Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more