Elber Communications Equipment Authentication Bypass Vulnerability Allowing Unauthorized Administrative Access

An authentication bypass vulnerability has been identified in multiple Elber communications products, including the Signum DVB-S/S2 IRD, Cleber/3 Broadcast Multi-Purpose Platform, Reble610 M/ODU XPIC IP-ASI-SDH, ESE DVB-S/S2 Satellite Receiver, and Wayber Analog/Digital Audio STL. This vulnerability allows attackers to gain unauthorized access to the password management functionality by manipulating the endpoint to overwrite any user's password. Exploitation of this vulnerability grants unauthorized administrative access to protected areas of the application, compromising the device's system security.

Impact

Successful exploitation of this vulnerability could allow an attacker to gain unauthorized administrative access to the affected device, potentially leading to further exploitation of the device's system security.

Remediation

Elber does not plan to mitigate these vulnerabilities as the equipment is either end of life or nearing end of life. Users of affected versions are invited to contact Elber customer support for additional information. CISA recommends minimizing network exposure for control system devices, locating them behind firewalls, and using secure remote access methods such as VPNs. Organizations should also perform proper impact analysis and risk assessment before deploying defensive measures.