Planet Technology Network Products Hard-Coded Credentials Vulnerability Allowing Unauthenticated Administrative Access

A vulnerability exists in Planet Technology's UNI-NMS-Lite, NMS-500, NMS-1000V, WGS-804HPT-V2, and WGS-4215-8T2S products, all versions or specific versions through 1.0b211018 for UNI-NMS-Lite. This vulnerability arises from the use of hard-coded credentials, which could enable an unauthenticated attacker to gain administrative privileges on all devices managed by UNI-NMS. Exploitation of this vulnerability could allow the attacker to read, manipulate, or create entries in the managed database, or in the case of certain products, execute operating system commands on the host system.

Impact

Successful exploitation could lead to unauthorized administrative access on affected devices, allowing attackers to manipulate device data, access and alter database entries, or execute commands on the host system, depending on the specific product.

Remediation

Planet Technology has released patches for all affected products. Users are advised to update to the latest version. CISA recommends minimizing network exposure for control system devices, using firewalls to isolate control system networks from business networks, and employing secure remote access methods such as VPNs.