Critical Rockwell Automation Bug in Drive Component Puts IIoT Plants at Risk

Forums Security Discussions (Security) Critical Rockwell Automation Bug in Drive Component Puts IIoT Plants at Risk

  • This topic has 1 voice and 0 replies.
Viewing 0 reply threads
  • Author
    Posts
    • #30916
      TelegramGroup IoTForIndia
      Moderator
      • Topic 2519
      • Replies 0
      • posts 2519
        @iotforindiatggroup

        #Discussion(Security) [ via IoTForIndiaGroup ]


        The flaw, CVE-2018-19282, could be exploited to manipulate the drive’s physical process and or stop it, according to researchers with Applied Risk who found it. The vulnerability has a CVSS score of 9.1, making it critical, according to researchers.

        “This finding allows an attacker to crash the Common Industrial Protocol (CIP) in a way that it does not accept any new connection,” Nicholas Merle, with Applied Risk, wrote in a Thursday analysis (PDF). “The current connections however, are kept active, giving attackers complete control over the device.”

        The vulnerability is critical because it gives “complete access to the device and DOS for the other users,” an Applied Risk spokesperson told Threatpost. “So availability and integrity are impacted, with no confidentiality impact. Those are also the most important factors in OT environment.”

        For a variable frequency drive, which controls the speed of motors in a live production environment, that kind of shutdown could have a serious impact. There are no known public exploits that target this vulnerability, researchers said. Impacted were versions 5.001 and older for the software.

        To exploit the vulnerability, a bad actor could send a precise sequence of packets effectively crashing the Common Industrial Protocol (the industrial protocol for industrial automation applications) network stack. An Applied Risk spokesperson told Threatpost that an attacker could be remote and wouldn’t need to be authenticated.

        [ A case for Fresh Thinking to SAFENET for IoT advocated Active defense …]


        Read More..

    Viewing 0 reply threads
    • You must be logged in to reply to this topic.