CVE-2021-34561
A vulnerability in WirelessHART-Gateway <= 3.0.8 allows to bypass any IP or firewall based access restrictions through DNS rebinding
In short
WirelessHART-Gateway versions 3.0.8 and earlier can be accessed by attackers even when protected by firewall or IP restrictions. Attackers exploit DNS Rebinding to trick a user's browser into accessing the restricted device, bypassing security barriers.
Technical detail
DNS Rebinding attack allows remote attackers to bypass IP-based and firewall access controls on WirelessHART-Gateway <= 3.0.8 by manipulating DNS responses to redirect browser requests through the victim's machine. The vulnerability requires user interaction (browser access) and affects systems with network-level protections, potentially exposing gateway administration interfaces to unauthorized access.
Summary generated and translated by AI from the official description.
In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.8 serious issue exists, if the application is not externally accessible or uses IP-based access restrictions. Attackers can use DNS Rebinding to bypass any IP or firewall based access restrictions that may be in place, by proxying through their target's browser.
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Phoenix Contact · WHA-GW-F2D2-0-AS- Z2-ETHPhoenix Contact · WHA-GW-F2D2-0-AS- Z2-ETH.EIPWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →