PatchSiren cyber security CVE debrief
CVE-2024-43693 Dover Fueling Solutions (DFS) CVE debrief
A critical command injection vulnerability in Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE allows remote attackers to execute arbitrary commands via a specially crafted POST request to the UTILITY sub-menu. The vulnerability affects MAGLINK LX CONSOLE versions 3.4.2.2.6 and earlier, and MAGLINK LX4 CONSOLE versions 4.17.9e and earlier. CISA published this advisory on September 24, 2024.
- Vendor
- Dover Fueling Solutions (DFS)
- Product
- ProGauge MAGLINK LX CONSOLE
- CVSS
- CRITICAL 10
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-09-24
- Original CVE updated
- 2024-09-24
- Advisory published
- 2024-09-24
- Advisory updated
- 2024-09-24
Who should care
Organizations operating Dover Fueling Solutions ProGauge MAGLINK LX or LX4 CONSOLE systems at fueling stations, petroleum terminals, or industrial fuel management facilities. Critical infrastructure operators in the energy sector with deployed MAGLINK console infrastructure should prioritize patching due to the unauthenticated remote exploitation vector and complete system compromise potential.
Technical summary
The ProGauge MAGLINK LX CONSOLE contains a command injection vulnerability in its UTILITY sub-menu. An unauthenticated remote attacker can send a specially crafted HTTP POST request to inject and execute arbitrary operating system commands. The vulnerability scores CVSS 3.1 10.0 (Critical) due to its network accessibility, lack of authentication requirements, and complete system compromise potential. Affected versions include MAGLINK LX CONSOLE 3.4.2.2.6 and earlier, and MAGLINK LX4 CONSOLE 4.17.9e and earlier. Dover Fueling Solutions has released version 4.19.10 to address this vulnerability.
Defensive priority
critical
Recommended defensive actions
- Apply software update version 4.19.10 for MagLink LX console through DFS authorized service organizations; contact DFS customer support at 877-679-8324 for North American installation assistance
- Install MagLink consoles behind firewalls to restrict network access
- Monitor for and install security updates on a timely basis
- Consider operating MagLink consoles offline or disconnected from networks where operational requirements permit
- Contact DFS customer support for questions regarding operations or software updates
- Registered MagLink customers should monitor the DFS proprietary portal for technical bulletins and updates
Evidence notes
CISA ICS advisory ICSA-24-268-04 confirms remote command injection via crafted POST request to UTILITY sub-menu. CVSS 3.1 score of 10.0 reflects network attack vector with no privileges required, no user interaction, and changed scope with high impact to confidentiality, integrity, and availability.
Official resources
-
CVE-2024-43693 CVE record
CVE.org
-
CVE-2024-43693 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2024-09-24