CVE-2023-5702 Viessmann Climate Solutions SE CVE debrief

Who should care

Organizations operating Viessmann Vitogate 300 devices in building automation, heating control, or industrial environments; OT security teams managing HVAC and energy management systems; facilities managers with Viessmann heating infrastructure.

Technical summary

The vulnerability exists in an unknown functionality of the /cgi-bin/ file path in Viessmann Vitogate 300 firmware versions 2.1.3.0 and earlier. The manipulation leads to direct request, which may allow unauthorized access to sensitive information. The attack requires adjacent network access but no authentication. The CVSS 4.0 vector (AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N) confirms high confidentiality impact with no integrity or availability impact.

Defensive priority

medium

Recommended defensive actions

• Update Viessmann Vitogate 300 to version 3.0.0.0 or later
• Review network segmentation to limit adjacent network access to Vitogate 300 devices
• Monitor access logs for unusual requests to /cgi-bin/ paths
• Apply CISA ICS recommended practices for industrial control system security

Evidence notes

Source: CISA CSAF advisory ICSA-24-254-01. Affected product confirmed as Viessmann Vitogate 300 versions 2.1.3.0 and prior. CVSS vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Official resources