OTPulse
FeedAboutContact

IGSS (Interactive Graphical SCADA System)

Plan Patch7.8SEVD-2023-164-02Jun 13, 2023
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

A vulnerability in the IGSS Dashboard module (DashBoard.exe) allows local code execution when a user interacts with malicious input. The IGSS product is a SCADA system used for monitoring and controlling industrial processes. The Dashboard component presents access data from the SCADA system. If the vulnerability is exploited, an attacker could execute arbitrary code and potentially gain control of the SCADA system, resulting in loss of control of industrial processes.

What this means
What could happen
An attacker with local access to a workstation running IGSS Dashboard could execute arbitrary code on the system, potentially gaining control of the SCADA system and disrupting monitoring and control of industrial processes.
Who's at risk
Energy utilities and manufacturing facilities using IGSS for SCADA monitoring and control should prioritize this. The vulnerability affects the Dashboard module used to display process data and control system status. Any facility where loss of SCADA visibility or control could affect production or grid operations should treat this as a priority.
How it could be exploited
An attacker would need to trick a user into opening a malicious file or interacting with a crafted input on a workstation where IGSS Dashboard is running. Upon user interaction with the payload, the vulnerability allows code execution with the privileges of the user running Dashboard.
Prerequisites
  • Local access to a workstation running IGSS Dashboard version 16.0.0.23130 or earlier
  • User interaction required (the user must open or interact with attacker-controlled content)
  • Dashboard application running on the target system
affects SCADA system monitoring and controlrequires user interactionlocal access requiredlocal privilege escalation possible
Exploitability
Moderate exploit probability (EPSS 3.1%)
Affected products (1)
ProductAffected VersionsFix Status
IGSS Dashboard (DashBoard.exe)≤ 16.0.0.2313016.0.0.23131
Remediation & Mitigation
0/3
Do now
0/2
HARDENINGRestrict user access to IGSS Dashboard to only authorized engineering and operations personnel
HARDENINGEducate users not to open untrusted files or accept unsolicited content on IGSS Dashboard workstations
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate IGSS Dashboard to version 16.0.0.23131 or later via IGSS Master > Update IGSS Software
View full Schneider Electric advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/d3ac321e-c4b0-4cd2-b894-f36f08e38936