sensitive info leakage

25 Jun 2016

[ICS] Sierra Wireless AirLink Raven XE Industrial 3G Gateway – Multiple Vulnerabilities

[ICS] Multiple vulnerabilities in Sierra Wireless AirLink Raven XE Industrial 3G Gateway About http://www.sierrawireless.com/products-and-solutions/gateway-solutions/raven-series/ The Sierra Wireless Raven XE and XT wireless gateways are used in the following industries and applications: utilities, manufacturing, automation, oil and gas, Ethernet-based SCADA, and telemetry. Read on

Read more

15 Jun 2016

[ICS] Papouch TME Temperature & Humidity Thermometers – Multiple Vulnerabilities

[ICS] Papouch TME Temperature & Humidity Thermometers - Multiple Vulnerabilities

Vulnerable Products

  1. Papouch TME Ethernet thermometer
  2. Papouch TME multi: Temperature and humidity via Ethernet

All versions affected

About
TME - Ethernet Thermometer
http://www.papouch.com/en/shop/product/tme-ip-ethernet-thermometer/

TME multi: Temperature and humidity via Ethernet
http://www.papouch.com/en/shop/product/tme-multi-temperature-humidity-via-ethernet/
 
Read on for details and poc.

Read more

24 Dec 2015

[ICS] eWON sa Industrial router – Multiple Vulnerabilities

Reported multiple vulnerabilities in eWON sa Industrial router. Response from eWON was not so surprisingly full of ignorance.

AFFECTED PRODUCTS
The following eWON router firmware versions are affected:
All eWON firmware versions prior to 10.1s0
 
ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-15-342-01
 
CVE-IDs
CVE-2015-7924
CVE-2015-7925
CVE-2015-7926
CVE-2015-7927
CVE-2015-7928
CVE-2015-7929

Read on.

Read more

28 Nov 2015

Cambium ePMP 1000 – Multiple vulnerabilities

A couple of weeks back, I came across Cambium ePMP devices. I found multiple vulnerabilities in Cambium ePMP 1000 devices, and as always, attempted to work with the vendor. But you know how most vendor(s) handle a responsible disclosure. Poorly.

Hence, documenting these findings and proof of concepts now.

Read on for details.

Read more