CVE-2023-47614 Telit Cinterion CVE debrief

Who should care

OT/ICS teams operating ABB Arctic Wireless Gateways, especially ARG600, ARC600, and ARR600 systems with Telit PLS62-W wireless modem modules. Administrators should pay particular attention if devices have local access paths, exposed SSH administration, active SMS/cellular services, or weak physical access controls.

Technical summary

CISA's CSAF advisory ICSA-25-100-09 identifies CVE-2023-47614 in ABB Arctic Wireless Gateway ARG600, ARC600, and ARR600 products that use the Telit PLS62-W wireless modem module. The vulnerability is described as an exposure of sensitive information that could allow a local, low-privileged attacker to learn hidden virtual paths and file names on the modem module. The advisory lists CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N, with a score of 3.2.

Defensive priority

Low, but worth addressing on any deployed gateway where local access, physical access, SSH administration, or cellular services are not tightly controlled.

Recommended defensive actions

• Follow ABB and CISA guidance for the affected Arctic Wireless Gateway models and confirm whether ARG600, ARC600, or ARR600 devices are in use.
• Use a private cellular access point where feasible to reduce exposure.
• Ask the mobile network operator to disable binary SMS for the subscription; if SMS is not needed, disable SMS services entirely.
• Do not expose SSH to public networks; restrict remote administration to a secure VPN such as OpenVPN.
• Restrict physical access to the product and its connected modem module.
• Review the referenced ABB product documentation and general ICS security recommendations linked in the advisory.

Evidence notes

All factual statements are drawn from the supplied CISA CSAF advisory record and its official references. The advisory was initially published and modified on 2025-04-07 (ICSA-25-100-09 / CVE-2023-47614). No exploit steps, weaponization details, or unsupported claims are included.

Official resources