OTPulse
FeedAboutContact

Pepperl+Fuchs Hart Device DTM Vulnerability

Low RiskICS-CERT ICSA-15-036-02Nov 8, 2015
Summary

Pepperl+Fuchs HART Device DTM (Device Type Manager) applications contain an input validation weakness (CWE-20) in the DTM Collection Level Control DTM and DTM Collection CorrTran DTM software. These tools are used to configure and communicate with HART-protocol field instruments. The vulnerability could allow network-based exploitation through malformed input without authentication.

What this means
What could happen
An attacker with network access to a HART device DTM could send malformed input to trigger unexpected behavior, potentially disrupting configuration or monitoring of field instruments.
Who's at risk
Water utilities and utilities managing HART-based field instrumentation (pressure transmitters, temperature sensors, flow meters, positioners) that use Pepperl+Fuchs DTM Collection software for device configuration and diagnostics on engineering workstations or control center systems.
How it could be exploited
An attacker on the network segment containing the HART DTM software could send specially crafted input to the DTM application, exploiting improper input validation to cause the application to behave unexpectedly or crash.
Prerequisites
  • Network access to the system running HART DTM software
  • The DTM application must be running and accessible on the network
  • No authentication appears to be required based on the advisory
No patch availableInput validation weakness (CWE-20)Affects device configuration tools used in control systemsEnd-of-life software with no vendor fix planned
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (2)
2 EOL
ProductAffected VersionsFix Status
DTM Collection Level Control DTM: <=1.0.28≤ 1.0.28No fix (EOL)
DTM Collection CorrTran DTM: <=1.4.128.8≤ 1.4.128.8No fix (EOL)
Remediation & Mitigation
0/3
Do now
0/1
WORKAROUNDImplement firewall rules to limit which systems can communicate with HART DTM software
Mitigations - no patch available
0/2
The following products have reached End of Life with no planned fix: DTM Collection Level Control DTM: <=1.0.28, DTM Collection CorrTran DTM: <=1.4.128.8. Apply the following compensating controls:
HARDENINGIsolate HART DTM systems on a dedicated network segment or VLAN to restrict network access
HARDENINGRun HART DTM on systems with minimal network exposure; avoid deploying on systems reachable from untrusted networks
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/ce5a0268-007a-4401-95be-f02e92bebc6d