Westermo-25-08: Sensitive Information in Logging

Severity: HIGH

Date: 2025-06-30

Description

Westermo has identified an issue where a threat actor could potentially gain unauthorized access to sensitive information.

Affected versions

WeOS 5: Affects all versions of WeOS 5 from version 5.24.0.

WeOS 4: is not affected.

Impact

Due to verbose logging, sensitive information like credentials is written to a log file. This log file can be read by users authorized to read syslog files. A potential adversary could gain access to sensitive information through system logging information.

Severity

Category	Score
Base score	8.5
Environmental score	8.1
Vector string	#CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/MAV:A

Mitigation

Westermo recommends the following actions to mitigate the vulnerability:

Limit administration account access to trusted parties. Regularly review and update the list of trusted parties to ensure only current and necessary personnel have access.
Store audit records on an independent syslog server. Ensure the syslog server is hardened and regularly updated to protect against vulnerabilities. Implement access controls and encryption for the stored audit records to prevent unauthorized access.
Enable TLS for remote logs. Use strong cipher suites and enforce the use of TLS 1.2 or higher to ensure secure communication.

	Westermo Security Advisory 25-07: CVE-2025-46418 - OS Command Injection Vulnerability in WeOS 5 Details on Westermo Security Advisory 25-07 concerning CVE-2025-46418, a vulnerability in WeOS 5 related to improper neutralization of special elements leading to OS command injection. Includes impact, severity, mitigation, and revision history.
	Westermo WeOS 5.25.2 Release Notes: Software Updates, Bug Fixes, and Known Issues Detailed release notes for Westermo WeOS version 5.25.2, covering new features, bug fixes, known limitations, and important user information for industrial network devices. Includes information on security enhancements and CLI changes.
	Westermo Lynx RedBox Industrial Switches User Guide Comprehensive user guide for Westermo Lynx RedBox industrial switches, covering installation, specifications, safety regulations, and product features. This guide is intended for installation engineers and users of Westermo products.
	Westermo Viper-8 Series User Guide Comprehensive user guide for the Westermo Viper-8 Series, a managed Gigabit routing switch designed for railway rolling stock applications. This guide covers product description, safety information, installation, specifications, and compliance.
	Westermo Lynx 3000 Series User Guide: Industrial Ethernet Switch Comprehensive user guide for the Westermo Lynx 3000 Series industrial Ethernet switches. Learn about product features, specifications, installation, safety regulations, and compliance information.
	Network Rail Certificate of Acceptance PA05/05858 for Westermo LAN Switches Details the Network Rail acceptance of Westermo L108-F2G-S2 and L208-F2G-S2 LAN Switches with RS232/RS485 support, including product specifications, conditions of use, and compliance information.
	Westermo 100 Mbit/s & 1 Gbit/s Multimode SFP Transceiver Datasheet Technical specifications and features of Westermo's 100 Mbit/s and 1 Gbit/s Multimode SFP Transceivers, designed for cost-effective fiber optic installations in enterprise networks.
	Westermo Lynx 5600 Series User Guide: Industrial Gigabit Ethernet Switch Comprehensive user guide for the Westermo Lynx 5600 Series industrial Gigabit Ethernet switch, covering installation, safety, specifications, and compliance. Learn about its features for substation automation.

Westermo-25-08: Sensitive Information in Logging

Description

Affected versions

Impact

Severity

Mitigation

Updates

References

Revision History

Related Documents