CVE-2023-47612 Telit Cinterion CVE debrief

Who should care

ABB Arctic Wireless Gateway owners and operators, OT/ICS administrators, field service teams, and site security personnel responsible for protecting devices that may be physically accessible.

Technical summary

The advisory describes a Files or Directories Accessible to External Parties issue on the wireless modem module used in ABB Arctic Wireless Gateways. The supplied CVSS vector is CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating physical proximity is required but the potential impact to confidentiality, integrity, and availability is high. Affected products listed in the CSAF product tree are Arctic Wireless Gateway ARG600, ARC600, and ARR600 with the Telit PLS62-W wireless modem module.

Defensive priority

Medium, with higher operational priority in environments where the gateways or modem modules are physically reachable by unauthorized people.

Recommended defensive actions

• Restrict physical access to the affected gateway and modem hardware.
• Do not expose SSH to public networks; keep it reachable only through a private network or secure VPN.
• Use OpenVPN for remote administration when SSH is required.
• Contact the cellular provider/mobile network operator about disabling binary SMS for the subscription; disable SMS entirely if it is not needed.
• Consider using a private cellular access point to reduce exposure.
• Follow ABB's general security recommendations and life-cycle guidance for the product line.

Evidence notes

All facts in this debrief are drawn from the supplied CISA CSAF advisory ICSA-25-100-09 and its listed references. The source identifies ABB as the vendor, names the three affected gateway models, describes the physical-access read/write issue on the wireless modem module, and provides the mitigation guidance. The supplied enrichment does not mark this CVE as a KEV item.

Official resources