{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "tracking": { "generator": { "date": "2024-10-28T12:57:43.164Z", "engine": { "version": "2.5.13", "name": "Secvisogram" } }, "current_release_date": "2025-05-22T13:03:10.000Z", "id": "VDE-2020-026", "initial_release_date": "2020-08-20T07:11:00.000Z", "status": "final", "version": "3", "revision_history": [ { "summary": "Initial revision.", "number": "1", "date": "2020-08-20T07:11:00.000Z" }, { "date": "2024-11-06T11:27:01.000Z", "number": "2", "summary": "Fix: correct certvde domain, added self-reference" }, { "number": "3", "summary": "Fix: version space, added distribution, quotation mark", "date": "2025-05-22T13:03:10.000Z" } ], "aliases": [ "VDE-2020-026" ] }, "lang": "en-GB", "title": "PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L", "acknowledgments": [ { "summary": "coordination", "organization": "CERT@VDE" }, { "summary": "coordination", "organization": "CISA" }, { "summary": "reported", "organization": "Honeywell" } ], "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "notes": [ { "category": "summary", "title": "Summary", "text": "A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart to correct." }, { "category": "description", "title": "Impact", "text": "Successful exploitation of this vulnerability could result in a denial-of-service condition." }, { "category": "description", "title": "Mitigation", "text": "Phoenix Contact recommends customers with affected products take the following steps to protect themselves:\n\n• Review and validate the list of users who are authorized and who can authenticate to Emalytics.\n\n• Allow only trained and trusted persons to have physical access to the system, including devices that have connection to the system though the Ethernet port.\n\nPhoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\n\nArt.-Nr. 107913: AH EN INDUSTRIAL SECURITY 'Measures to protect network-capable devices with Ethernet connection against unauthorized access'" }, { "title": "Remedation", "category": "description", "text": "This vulnerability will be fixed in the regular firmware release (v.1.4.0) which is expected to be available October 2020." } ], "publisher": { "category": "vendor", "name": "Phoenix Contact GmbH & Co. KG", "contact_details": "psirt@phoenixcontact.com", "namespace": "https://phoenixcontact.com/psirt" }, "references": [ { "summary": "CERT@VDE Security Advisories for Phoenix Contact", "url": "https://certvde.com/en/advisories/vendor/phoenixcontact/", "category": "external" }, { "summary": "VDE-2020-026: PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L - HTML", "url": "https://certvde.com/de/advisories/VDE-2020-026/", "category": "self" }, { "summary": "VDE-2020-026: PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L - CSAF", "url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2020/vde-2020-026.json", "category": "self" } ] }, "product_tree": { "branches": [ { "category": "vendor", "name": "PHOENIX CONTACT", "branches": [ { "category": "product_family", "name": "Hardware", "branches": [ { "name": "ILC 2050 BI", "category": "product_name", "product": { "name": "Hardware ILC 2050 BI", "product_id": "CSAFPID-11001" } }, { "name": "ILC 2050 BI-L", "category": "product_name", "product": { "name": "Hardware ILC 2050 BI-L", "product_id": "CSAFPID-11002" } } ] }, { "category": "product_family", "name": "Firmware", "branches": [ { "name": "<=1.3.0", "category": "product_version_range", "product": { "name": "Firmware <=1.3.0", "product_id": "CSAFPID-21001" } }, { "name": "v.1.4.0", "category": "product_version", "product": { "name": "Firmware v.1.4.0", "product_id": "CSAFPID-22001" } } ] }, { "name": "Software", "category": "product_family", "branches": [ { "name": "Emalytics Automation Workbench N4", "category": "product_name", "product": { "name": "Software Emalytics Automation Workbench N4", "product_id": "CSAFPID-51001" } } ] } ] } ], "relationships": [ { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11001", "full_product_name": { "name": "Firmware <=1.3.0 installed on Hardware ILC 2050 BI", "product_id": "CSAFPID-31001" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11002", "full_product_name": { "name": "Firmware <=1.3.0 installed on Hardware ILC 2050 BI-L", "product_id": "CSAFPID-31002" } }, { "category": "external_component_of", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-51001", "full_product_name": { "name": "Firmware <=1.3.0 external component of Software Emalytics Automation Workbench N4", "product_id": "CSAFPID-31003" } }, { "category": "installed_on", "product_reference": "CSAFPID-22001", "relates_to_product_reference": "CSAFPID-11001", "full_product_name": { "name": "Firmware v.1.4.0 installed on Hardware ILC 2050 BI", "product_id": "CSAFPID-32001" } }, { "category": "installed_on", "product_reference": "CSAFPID-22001", "relates_to_product_reference": "CSAFPID-11002", "full_product_name": { "name": "Firmware v.1.4.0 installed on Hardware ILC 2050 BI-L", "product_id": "CSAFPID-32002" } }, { "category": "external_component_of", "product_reference": "CSAFPID-22001", "relates_to_product_reference": "CSAFPID-51001", "full_product_name": { "name": "Firmware v.1.4.0 external component of Software Emalytics Automation Workbench N4", "product_id": "CSAFPID-32003" } } ], "product_groups": [ { "group_id": "CSAFGID-0001", "product_ids": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003" ], "summary": "Affected products." }, { "group_id": "CSAFGID-0002", "product_ids": [ "CSAFPID-32001", "CSAFPID-32002", "CSAFPID-32003" ], "summary": "Fixed products." } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14483", "title": "CVE-2020-14483", "cwe": { "id": "CWE-1088", "name": "Synchronous Access of Remote Resource without Timeout" }, "notes": [ { "category": "summary", "title": "Summary", "text": "A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart of Niagara (Versions 4.6.96.28, 4.7.109.20, 4.7.110.32, 4.8.0.110) and Niagara Enterprise Security (Versions 2.4.31, 2.4.45, 4.8.0.35) to correct." } ], "product_status": { "known_affected": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003" ], "fixed": [ "CSAFPID-32001", "CSAFPID-32002", "CSAFPID-32003" ] }, "remediations": [ { "details": "Phoenix Contact recommends customers with affected products take the following steps to protect themselves:\n\n• Review and validate the list of users who are authorized and who can authenticate to Emalytics.\n\n• Allow only trained and trusted persons to have physical access to the system, including devices that have connection to the system though the Ethernet port.\n\nPhoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\n\nArt.-Nr. 107913: AH EN INDUSTRIAL SECURITY 'Measures to protect network-capable devices with Ethernet connection against unauthorized access' external link", "category": "mitigation", "group_ids": [ "CSAFGID-0001" ] }, { "details": "This vulnerability will be fixed in the regular firmware release (v.1.4.0) which is expected to be available October 2020.", "category": "vendor_fix", "group_ids": [ "CSAFGID-0001" ] } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "baseScore": 4.3, "baseSeverity": "MEDIUM", "temporalScore": 4.3, "temporalSeverity": "MEDIUM", "environmentalScore": 4.3, "environmentalSeverity": "MEDIUM", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW" }, "products": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003" ] } ] } ] }