| Título | Claroty SRA <2.0.1 - unauthenticated port scan |
|---|
| Descrição | Claroty Secure Remote Access (SRA) is used to manage access to OT/ICS networks. In SRA version < 2.0.1 it is possible for an unauthenticated remote attacker to perform port scans of the internal OT/ICS network using the /server_statuses function.
In order to take advantage of this vulnerability an attacker must know the site_name by default this is 'central' for the DMZ and 'Central' for the OT network.
Example:
‘/servers_statuses?ip=10.10.10.10&port=445&protocol=tcp&site_name=Central’
|
|---|
| Utilizador | Standlt6 (UID 10185) |
|---|
| Submissão | 06/03/2020 17h35 (há 6 anos) |
|---|
| Moderação | 10/08/2020 10h47 (5 months later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 159428 |
|---|
| Pontos | 17 |
|---|