A number of vulnerabilities affecting the industrial routers of Inhand Networks allow hackers to go around security systems and gain access to internal surgical control networks (Internal OT NETWORKS) directly from the Internet.
US Cybersecurity and Infrastructure Security Agency and CISA) Cybersecurity Agency last week published a memo about five vulnerabilities detected by the researcher from Otorio in industrial routers>
According to CISA, most vulnerabilities are associated with the protocol for transmitting a sequence of messages with telemetry data (Message Queuing Telemetry Transport, MQTT). The use of such vulnerability can lead to the implementation of the command of the attacker and disclosure of information.
Five “Safety Holes” found were classified as follows: one was assigned a critical degree of seriousness, two more – high, and two remaining – the average degree of seriousness.
Matan Dobrushin, vice president of research in Otorio, said that vulnerabilities affect both the cloud control platform and the device software.
“The simultaneous use of these vulnerabilities can allow the attacker to remotely execute the code on behalf of the Root user on all connected devices in the Inrouter302 and Inrouter615 directly from the Internet,” Dobrushin explained.
.
Touched devices are used for industrial robots, oil wells, elevators, medical equipment, electric vehicles and intellectual counters. Critically important spheres of industry have been a serious threat.
“tens of thousands of devices affecting many infrastructures around the world are subject to these vulnerabilities,” Dobrushin warned.
Roni Gavrilov, a researcher from Otorio, who is credited with the detection of these vulnerabilities, provided additional information about their influence in the post on Linkedin. “The successful use of wireless ones is more than the most IOT devices for use by consumers, including vehicles, smart home systems, smart clothes, medical devices and devices with remote monitoring capabilities.