Ovarro TBox RTUs

Risk Summary

Successful exploitation of these vulnerabilities could result in sensitive system information being exposed andprivilege escalation.

CVEs (6)

Remediations

• Ovarro recommends users update the affected products to the latest version by downloading the newest software version from the Ovarro website in the "Customer Support" section.
• In addition to applying patches, Ovarro has identified the following workarounds:
• CVE-2023-36607: Disable SSH access through the integrated firewall and disable the user account SSH access by emptying its password in the application.
• CVE-2023-36608: Update to TWinSoft version 12.7.2 or later, which includes firmware version 1.50.598.
• CVE-2023-36609: Update to TWinSoft version 12.7.2 or later, which includes firmware version 1.50.598.
• CVE-2023-36610: Disable SSH access through the integrated firewall and disable the user account SSH access by emptying its password in the application. Setting a password on the application will also cause the retrieved application to be encrypted.
• CVE-2023-36611: Disable SSH access through the integrated firewall and disable the user account SSH access by emptying its password in the application. Setting a password on the application will also cause the retrieved application to be encrypted.
• CVE-2023-3395: Use password protected files within the TBox software. This will prevent attackers from opening files to load passwords into memory in plaintext.

Affected Vendors

Affected Products (15)

Affected Sectors

Water and Wastewater, Energy, Transportation, Communications