A vulnerability in WirelessHART-Gateway <= 3.0.8 allows to bypass any IP or firewall based access restrictions through DNS rebinding
CVE-2021-34561

7.5HIGH

Key Information:

Vendor
Phoenix Contact
Status
Wha-gw-f2d2-0-as- Z2-eth
Wha-gw-f2d2-0-as- Z2-eth.eip
Vendor
CVE Published:
31 August 2021

Summary

In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.8 serious issue exists, if the application is not externally accessible or uses IP-based access restrictions. Attackers can use DNS Rebinding to bypass any IP or firewall based access restrictions that may be in place, by proxying through their target's browser.

Affected Version(s)

WHA-GW-F2D2-0-AS- Z2-ETH 3.0.8

WHA-GW-F2D2-0-AS- Z2-ETH.EIP 3.0.8

References

https://cert.vde.com/en-us/advisories/vde-2021-027
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Pepperl+Fuchs reported this vulnerability. CERT@VDE coordinated.
.
CVE-2021-34561 : A vulnerability in WirelessHART-Gateway <= 3.0.8 allows to bypass any IP or firewall based access restrictions through DNS rebinding | SecurityVulnerability.io