Schneider Electric PowerLogic HDPM6000 Authorization Bypass Vulnerability Allowing Privilege Escalation

An authorization bypass vulnerability has been identified in the Schneider Electric PowerLogic HDPM6000 High-Density Metering System, specifically in version v0.62.7. This vulnerability could allow an authorized attacker to elevate privileges by modifying values beyond their assigned rights. The issue arises when altered HTTPS requests are sent to the device.

Impact

Exploitation of this vulnerability could enable a low-privileged user to gain higher-level access, allowing them to change system configuration parameters. Additionally, an unauthenticated user could corrupt data or cause a denial-of-service condition on the device's web interface by sending specially crafted Modbus protocol write operations.

Remediation

Users of the PowerLogic HDPM6000 version v0.62.7 should upgrade to version v0.62.11 or newer, which includes a fix for this vulnerability. If the upgrade is performed through the web user interface, a device restart will be required. When using the HDPM6000 Manager software, the restart must be done manually. For those who choose not to apply the update, it is recommended to restrict access to the device via HTTPS and Modbus protocols from outside the local network segment, using appropriate firewall configurations and controls.