Nelson Berg, an Applied Risk researcher, has discovered multiple vulnerabilities in the ABB GATE E1 and ABB GATE E2 Pluto Gateway units. The first vulnerability concerns a Missing Authentication for Critical Functions vulnerability, and the second a Persistent Cross-Site Scripting vulnerability.
The ABB GATE E1/E2 Pluto Gateway units provide two-way communication between a Pluto Safety PLC and other field buses. The devices are commonly used in a range of industries such as Oil & Gas, Manufacturing, Chemicals and Power, amongst many other industrial sectors. Exploitation of these vulnerabilities may allow an attacker to compromise the availability of the device or compromise the web browser of an administrator visiting the web-portal.
The missing authentication flaw has been given a CVSSv3 (Common Vulnerability Scoring System) of 9.8 (critical), while the cross-site scripting vulnerability has received a CVSSv3 of 7.1 (high).
Applied Risk has worked alongside the vendor in the responsible disclosure process.
To read an overview of the advisory, please visit here