#VU85926 Improper Authorization in Emerson products - CVE-2023-43609

Cybersecurity Help s.r.o.

Published: 2024-01-31

Vulnerability identifier: #VU85926

Vulnerability risk: Low

CVSSv4.0: 2.4 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-43609

CWE-ID: CWE-285

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
GC370XA
Hardware solutions / Other hardware appliances
GC700XA
Hardware solutions / Other hardware appliances
GC1500XA
Hardware solutions / Other hardware appliances

Vendor: Emerson

Description

The vulnerability allows a remote attacker to bypass authorization checks.

The vulnerability exists due to improper authorization. A remote attacker on the local network can obtain access to sensitive information or perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

GC370XA: 4.1.5

GC700XA: 4.1.5

GC1500XA: 4.1.5

External links
https://www.cisa.gov/news-events/ics-advisories/icsa-24-030-01
https://www.emerson.com/documents/automation/security-notification-emerson-gas-chromatographs-cyber-security-notification-icsa-24-030-01-en-10103910.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Emerson Rosemount GC370XA, GC700XA, GC1500XA