OTPulse
FeedAboutContact

Landis+Gyr E850

Low Risk3.9ICS-CERT ICSA-23-026-07Jan 26, 2023
Attack VectorLocal
Auth RequiredLow
ComplexityLow
User InteractionRequired
Summary

CVE in Landis+Gyr E850 (ZMQ200) involving cookie modification vulnerability (CWE-784). Successful exploitation could cause a denial-of-service condition for the affected user. The vulnerability is not remotely exploitable and requires local access, low privilege credentials, and user interaction. No known public exploits exist for this vulnerability.

What this means
What could happen
An attacker with local access could modify a cookie to cause a denial-of-service condition affecting a specific user, disrupting access to the device's management interface or functions.
Who's at risk
Utilities operating Landis+Gyr E850 (ZMQ200) electricity meters or distribution management equipment should assess this vulnerability. The impact is limited to local attacks and low severity, but affects meter management and billing operations.
How it could be exploited
An attacker with local access to the device or authenticated session could modify authentication/session cookies through a local mechanism (such as web browser storage, local file access, or in-memory manipulation). This causes the affected user's session to fail, preventing them from accessing or controlling the device.
Prerequisites
  • Local access to the E850 device or its management interface
  • Low privilege user account (PR:L indicates low privilege required)
  • User interaction (UI:R indicates the attack requires the user to perform an action, such as accepting a file or visiting a link)
Local access required (not remotely exploitable)Low privilege account requiredUser interaction requiredLow severity impact (denial-of-service only)
Exploitability
Low exploit probability (EPSS 0.2%)
Affected products (1)
ProductAffected VersionsFix Status
E850 (ZMQ200): E850 (ZMQ200): All versionsAll versionsNo fix yet
Remediation & Mitigation
0/3
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXContact Landis+Gyr support to obtain and deploy the latest firmware version for the E850 (ZMQ200)
Long-term hardening
0/2
HARDENINGRestrict physical and network access to the E850 device to authorized personnel only
HARDENINGMonitor device access logs for unauthorized local logon attempts or cookie-related anomalies
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/ec061500-e471-4179-92bc-1405d8b9743f