CVE-2023-3634

Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

CVSS 8.8 HIGHEPSS 0.5%CWE-1242

In short

Festo MSE6 devices have hidden test functions that aren't documented in the user manual. An attacker with basic access to the device remotely could exploit these functions to completely compromise the system's security, stealing data, modifying it, or shutting it down.

Technical detail

The MSE6 product family contains undocumented remote-accessible test mode functions that can be invoked by a low-privileged authenticated attacker. Exploitation requires network access to the device and valid credentials; successful exploitation results in complete compromise of confidentiality, integrity, and availability (CIA triad).

Summary generated and translated by AI from the official description.

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Festo · MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L4-AGD Festo · MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L5-AGD Festo · MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L4-MQ1-AGD Festo · MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L5-MQ1-AGD Festo · MSE6-C2M-5000-FB44-D-M-RG-BAR-AMI-AGD Festo · MSE6-C2M-5000-FB44-D-RG-BAR-AMI-AGD Festo · MSE6-D2M-5000-CBUS-S-RG-BAR-VCB-AGD Festo · MSE6-E2M-5000-FB13-AGD Festo · MSE6-E2M-5000-FB36-AGD Festo · MSE6-E2M-5000-FB37-AGD Festo · MSE6-E2M-5000-FB43-AGD Festo · MSE6-E2M-5000-FB44-AGD

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://certvde.com/de/advisories/VDE-2023-020/https://festo.csaf-tp.certvde.com/.well-known/csaf/white/2023/fsa-202304.json