Intel 2G Modem
Plan Patch8.2ICS-CERT ICSA-18-114-02Apr 24, 2018
Attack VectorAdjacent
Auth RequiredNone
ComplexityHigh
User InteractionNone needed
Summary
A buffer overflow vulnerability exists in Intel 2G and 3G modem firmware (XMM71xx, XMM72xx, XMM73xx, XMM74xx, Sofia 3G, Sofia 3G-R, Sofia 3G-R W series). Successful exploitation allows remote code execution. Intel has released security updates to device manufacturers; end users must check with their specific modem or equipment manufacturers for patched firmware versions. No known public exploits exist, but the vulnerability is remotely exploitable and requires high skill to exploit.
What this means
What could happen
An attacker with network access to a vulnerable modem could execute arbitrary code, potentially compromising cellular connectivity and enabling further attacks on connected systems in industrial facilities.
Who's at risk
Water utilities and electric utilities that use Intel 2G or 3G modems for SCADA telemetry, remote RTU communications, or backup cellular connectivity. Any industrial facility using these modem chipsets for remote device management or field equipment connectivity should be concerned.
How it could be exploited
An attacker on the same network segment as the modem sends a specially crafted message that overflows a buffer in the modem firmware. This causes the modem to execute attacker-controlled code, which could alter modem behavior, intercept communications, or be used as a pivot point to attack other devices on the network.
Prerequisites
- Network access to the affected 2G/3G modem device
- High technical skill to craft the buffer overflow payload
- Device must be running vulnerable firmware version
remotely exploitableno authentication requiredhigh skill level required to exploitno patch available from Intelbuffer overflow vulnerability
Exploitability
Low exploit probability (EPSS 0.5%)
Affected products (7)
7 pending
ProductAffected VersionsFix Status
2G Modem - Intel XMM71xxIntel XMM71xxNo fix yet
2G Modem - Intel XMM72xxIntel XMM72xxNo fix yet
2G Modem - Intel XMM73xxIntel XMM73xxNo fix yet
2G Modem - Intel XMM74xxIntel XMM74xxNo fix yet
2G Modem - Sofia 3GSofia 3GNo fix yet
2G Modem - Sofia 3G-RSofia 3G-RNo fix yet
2G Modem - Sofia 3G-R WSofia 3G-R WNo fix yet
Remediation & Mitigation
0/3
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXContact your modem or device manufacturer to check for and apply available firmware updates that address this buffer overflow vulnerability
Long-term hardening
0/2HARDENINGSegment modem devices from critical control system networks using firewall rules and network isolation to limit remote access
HARDENINGImplement network monitoring to detect unusual communication patterns from modems that may indicate exploitation attempts
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/37dce377-cd64-47bd-8687-d71cce59d4ae