#VU67060 Improper access control in TMW IEC 61850 Software Library and TMW IEC 60870-6 (ICCP/TASE.2) Software Library - CVE-2022-38138

Cybersecurity Help s.r.o.

Published: 2022-09-07

Vulnerability identifier: #VU67060

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-38138

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
TMW IEC 61850 Software Library
Universal components / Libraries / Libraries used by multiple products
TMW IEC 60870-6 (ICCP/TASE.2) Software Library
Universal components / Libraries / Libraries used by multiple products

Vendor: Triangle MicroWorks, Inc.

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to access given to a small number of uninitialized pointers within their code. A remote attacker can bypass implemented security restrictions and perform a denial of service (DoS) attack. on the system.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

TMW IEC 61850 Software Library: 5.0.1 - 11.2.0

TMW IEC 60870-6 (ICCP/TASE.2) Software Library: 4.4.3

External links
https://ics-cert.us-cert.gov/advisories/icsa-22-249-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Denial of service in Triangle Microworks Libraries