A denial of service vulnerability exists in Schneider Electrics MiCOM Px4x (P540 range excluded) with legacy Ethernet board, MiCOM P540D Range with Legacy Ethernet Board, and MiCOM Px4x Rejuvenated could lose network communication in case of TCP/IP open requests on port 20000 (DNP3oE) if an older TCI/IP session is still open with identical IP address and port number.
Weakness
According to WASC, “Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization.”
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Micom_p141_firmware | Schneider-electric | - (including) | - (including) |
Potential Mitigations
References
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-02/
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-03/
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-04/
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-02/
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-03/
- https://www.schneider-electric.com/en/download/document/SEVD-2018-074-04/