Baker Hughes Bently Nevada 3500 System Incorrect Permission Assignment for Critical Resource

Vulnerability

CVE-2023-34437 is an incorrect permission assignment for critical resource vulnerability (CWE-732) in the password retrieval functionality of Baker Hughes Bently Nevada 3500 System TDI Firmware version 5.05 [1]. The affected product is the Bently Nevada 3500 Rack running TDI Firmware version 5.05. The flaw allows an attacker to access passwords stored on the device due to improper permission checks on the password retrieval mechanism.

Exploitation

An attacker can exploit this vulnerability remotely over the network with low attack complexity [1]. No authentication or user interaction is required. The attacker sends crafted requests to the password retrieval functionality of the device, bypassing permission checks to obtain stored passwords.

Impact

Successful exploitation results in the disclosure of stored passwords, leading to a high confidentiality impact [1]. Integrity and availability are not affected. The attacker gains access to sensitive credentials, which could be used for further unauthorized access to the device or network.

Mitigation

As of the advisory publication date (2023-10-18), no fix has been released for CVE-2023-34437 [1]. The vendor has not provided workarounds or mitigations. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. Users should monitor vendor advisories for future updates.