EIBPORT Session Management Fail
Plan Patch8.89akk108471a1621Jun 2, 2025
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
ABB EIBPORT V3 KNX and EIBPORT V3 KNX GSM devices contain session management vulnerabilities in firmware versions 3.9.8 and earlier. An attacker could exploit these flaws to access sensitive information stored on the device or modify device configuration. The vulnerabilities stem from improper session handling (CWE-384). A firmware update to version 3.9.9 resolves these issues.
What this means
What could happen
An attacker could access sensitive information stored on the EIBPORT device and modify its configuration, potentially disrupting KNX building automation or GSM communication functions that depend on correct device settings.
Who's at risk
Organizations using ABB EIBPORT V3 KNX gateway devices for building automation and KNX network management, particularly those with GSM connectivity for remote facility monitoring or control. This affects facilities that rely on KNX protocol for HVAC, lighting, and other building systems integration.
How it could be exploited
An attacker on the network could send a specially crafted request to the EIBPORT device to exploit a session management flaw. Once the session is compromised, the attacker could read stored data or alter configuration parameters without proper re-authentication.
Prerequisites
- Network access to the EIBPORT device
- Affected product version 3.9.8 or earlier
Remotely exploitableNo authentication requiredLow attack complexityHigh CVSS score (8.8)
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (2)
2 with fix
ProductAffected VersionsFix Status
EIBPORT V3 KNX≤ 3.9.83.9.9
EIBPORT V3 KNX GSM≤ 3.9.83.9.9
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
EIBPORT V3 KNX
HOTFIXUpdate EIBPORT V3 KNX and EIBPORT V3 KNX GSM devices to firmware version 3.9.9 or later
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/c50445d1-b921-4469-9066-4e6e3a698611