ICSA-23-082-05 · Published 2023-03-31 · View on CISA ICS-CERT ↗

ABB Pulsar Plus Controller

CVSS 6.3 MEDIUM

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to take control of the product or execute arbitrary code.

CVE-2022-1607 CVE-2022-26080

An update is available that resolves a privately reported vulnerability in the product versions listed above. The update is version number 5.0.0 for the application and 5.0.0 for web pages. These updates have been distributed through the appropriate product support channels with the customers.ABB recommends that users ensure the firewall protection is properly configured.A workaround suggested by ABB is to use the controller’s Read/Write Enable/Disable feature for a network port (NET1,WRE=0). The controller can disable all writes over the network port. The factory default is to have the write capability enabled, however, some customers may not want settings to be remotely changed once systems are set. This feature, when set to “Disable”, will allow no changes to be accepted. Once set it can only be changed locally through the front panel. Although these workarounds will not correct the underlying vulnerability, they can help block known attack vectors.For more information, see ABB Security Advisory .

ABB

ABB · ABB Infinity DC Power Plant H5692448 | G104 | G842 | G224L | G630-4 | G451C(2) | G461(2) | comcode 150047415

ABB · ABB Pulsar Plus System Controller NE843_S comcode 150042936

Chemical, Critical Manufacturing, Dams, Energy, Food and Agriculture, Water and Wastewater

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.