// For flags

CVE-2022-30276

 

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The Motorola MOSCAD and ACE line of RTUs through 2022-05-02 omit an authentication requirement. They feature IP Gateway modules which allow for interfacing between Motorola Data Link Communication (MDLC) networks (potentially over a variety of serial, RF and/or Ethernet links) and TCP/IP networks. Communication with RTUs behind the gateway is done by means of the proprietary IPGW protocol (5001/TCP). This protocol does not have any authentication features, allowing any attacker capable of communicating with the port in question to invoke (a subset of) desired functionality.

Motorola MOSCAD and ACE line of RTUs versiones hasta 02-05-2022, omiten un requisito de autenticación. Cuentan con módulos de puerta de enlace IP que permiten la interconexión entre las redes de Comunicación de Enlace de Datos de Motorola (MDLC) (potencialmente a través de una variedad de enlaces de serie, RF y/o Ethernet) y las redes TCP/IP. La comunicación con las RTU detrás de la pasarela es realizado mediante el protocolo propietario IPGW (5001/TCP). Este protocolo no presenta ninguna característica de autenticación, lo que permite a cualquier atacante capaz de comunicarse con el puerto en cuestión invocar (un subconjunto de) la funcionalidad deseada

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-05-04 CVE Reserved
  • 2022-07-26 CVE Published
  • 2024-02-16 EPSS Updated
  • 2024-08-03 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-306: Missing Authentication for Critical Function
CAPEC
References (2)
URL Tag Source
https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-04 Mitigation
https://www.forescout.com/blog Third Party Advisory
URL Date SRC
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Motorola
Search vendor "Motorola"
 Moscad Ip Gateway Firmware
Search vendor "Motorola" for product "Moscad Ip Gateway Firmware"
*-
Affected
in Motorola
Search vendor "Motorola"
 Moscad Ip Gateway
Search vendor "Motorola" for product "Moscad Ip Gateway"
--
Safe
Motorola
Search vendor "Motorola"
 Ace Ip Gateway \(4600\) Firmware
Search vendor "Motorola" for product "Ace Ip Gateway \(4600\) Firmware"
*-
Affected
in Motorola
Search vendor "Motorola"
 Ace Ip Gateway \(4600\)
Search vendor "Motorola" for product "Ace Ip Gateway \(4600\)"
--
Safe