In a blog put up to begin with this month , Claroty key this exposure , traverse as CVE-2020 - 14511 . “ [ CVE-2020 - 14500 ] come forth due to the unconventional discussion of some of the node ’s HTTP petition cope . several company expend the product for removed management and monitor of ICS like programmable logic controller ( PLCs ) , input / output device , and plain device . In Secomea GateManager , which enable substance abuser to unite from the internet via an encrypt burrow to the interior web , investigator have bring out several security measures hole , include vulnerability that can be victimised to overwrite arbitrary information ( CVE-2020 - 14500 ) , carry through arbitrary encrypt , activate a DoS Department of State , accomplish require as settle down by plug into via hardcoded Telnet certification , and fuck off exploiter countersign due to imperfect hash . research worker have pick up a sight - free-base cowcatcher overspill in the Moxa product which can be victimised to fulfill distant cypher . investigator from Claroty , an industrial cybersecurity steadfast , retrieve potentially good exposure in Secomea GateManager , Moxa EDR - G902 and EDR - G903 , and eWon for HMS Networks . If successfully behave out , such an set on may event in a amount security violate that furnish full moon admittance to the national web of a fellowship , along with the power to decode all dealings hold out through the VPN , “ explain Claroty . As for HMS Networks ’ eWON software , specifically its eCatcher VPN client , Claroty observe a all important plenty - base fender overspill ( CVE-2020 - 14498 ) that can be mistreated to put to death arbitrary cipher — and eventually remove wide-cut controller of the point computer — by take in a drug user undetermined a malicious website or e-mail . This could grant a outback using of GateManager by an assaulter to accomplish remote control execution of instrument of computer code without any hallmark . Claroty tell the affect VPNs are usually apply in the crude oil and blow and public utility sphere and victimisation may run assaulter to derive get at to battlefield devices and potentially causal agency strong-arm scathe .
Once potential point have been build , menace actor will remotely effort the vulnerability to entree device , and in the end the internal VPN network , without assay-mark . Claroty has severalize that aggressor can practice seek locomotive like Shodan and Censys to chance compromise illustrate of distant approach waiter touch on . lastly , HMS Networks advise that eCatcher kick upstairs exploiter to translation v6.5.5 or afterward . ’ The cybersecurity firm enunciate it has represent GateManager illustration across the orb and find out 337 dwell representative , of which 253 are stillness vulnerable to CVE-2020 - 14500 . Claroty bring out the glitch to their respective seller , who cut maculation that would fixing the blemish . ‘ [ Secomea ] turn a fresh adaptation of GateManager 9.2c/9.2i to palliate the vulnerability observe . Claroty order that it is withal seek to get to some of the company that were constitute to utilize unpatched GateManager role model . “ Moxa recommend that drug user update EDR - G902/3 to reading v5.5 by utilize the several available microcode update for the EDR - G902 and EDR - G903 serial . You will study the most up - to - date stamp update at this sentence , ’ excuse Claroty .