Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-0053

Published: 02/03/2023 Updated: 27/10/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Sauter-controls

Vulnerability Summary

SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and prior and BACnetstac version 4.2.1 and prior have only FTP and Telnet available for device management. Any sensitive information communicated through these protocols, such as credentials, is sent in cleartext. An attacker could obtain sensitive information such as user credentials to gain access to the system.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

sauter-controls nova_220_eyk220f001_firmware

sauter-controls nova_230_eyk230f001_firmware

sauter-controls nova_106_eyk300f001_firmware

sauter-controls modunet300_ey-am300f001_firmware

sauter-controls modunet300_ey-am300f002_firmware

sauter-controls bacnetstac

ICS Advisories

SAUTER Controls Nova 200 – 220 Series (PLC 6)
Critical Infrastructure Sectors: Critical Manufacturing, Energy
SAUTER Controls Nova 200 – 220 Series (PLC 6)
Critical Infrastructure Sectors: Critical Manufacturing, Energy

References

CWE-319https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-05https://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-012-05
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook