TEL-STER TelWin SCADA WebInterface

CVSS 7.5 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow an unauthenticated attacker to read files on the system.

CVE-2023-0956

TEL-STER recommends that users update WebInterface module to one of the following versions: 6.2, 7.2, 8.1, 9.1, or 10.0. Please note that the WebInterface is part of the TelWin SCADA software and is usually updated with the software. TEL-STER only currently supports and updates TelWin SCADA 7.8 (WebInteraface 6.x) upwards TEL-STER does not have any updates planned for versions using older vulnerable WebInterface (lower than 6.0), and users are recommended to update TelWin SCADA to one of the supported versions. For more information, please contact TEL-STER.
More information about this issue and the associated mitigation can be found at TEL-STER advisory.
More information about this issue and the associated mitigation can be found at CERT.PL advisory.

TEL-STER Sp. z o. o.

TEL-STER Sp. z o. o. · TelWin SCADA WebInterface >= 3.2 | < 6.1

TEL-STER Sp. z o. o. · TelWin SCADA WebInterface >= 7.0 | < 7.1

TEL-STER Sp. z o. o. · TelWin SCADA WebInterface 8.0 | 9.0

Multiple sectors

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.