Vulnerabilites related to automationdirect - ea9-t6cl-r
CVE-2020-10921 (GCVE-0-2020-10921)
Vulnerability from cvelistv5
Published
2020-07-23 15:35
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-306 - Missing Authentication for Critical Function
Summary
This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. Was ZDI-CAN-10482.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:15.689Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HMI EA9",
"vendor": "C-MORE",
"versions": [
{
"status": "affected",
"version": "Firmware version 6.52"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)"
}
],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. Was ZDI-CAN-10482."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-306",
"description": "CWE-306: Missing Authentication for Critical Function",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-23T15:35:19",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "zdi-disclosures@trendmicro.com",
"ID": "CVE-2020-10921",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HMI EA9",
"version": {
"version_data": [
{
"version_value": "Firmware version 6.52"
}
]
}
}
]
},
"vendor_name": "C-MORE"
}
]
}
},
"credit": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. Was ZDI-CAN-10482."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-306: Missing Authentication for Critical Function"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/",
"refsource": "MISC",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2020-10921",
"datePublished": "2020-07-23T15:35:19",
"dateReserved": "2020-03-24T00:00:00",
"dateUpdated": "2024-08-04T11:14:15.689Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-10918 (GCVE-0-2020-10918)
Vulnerability from cvelistv5
Published
2020-07-23 15:35
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-287 - Improper Authentication
Summary
This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism. The issue is due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from unauthenticated users. Was ZDI-CAN-10182.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:15.682Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HMI EA9",
"vendor": "C-MORE",
"versions": [
{
"status": "affected",
"version": "Firmware version 6.52"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Anonymous"
}
],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism. The issue is due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from unauthenticated users. Was ZDI-CAN-10182."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-287",
"description": "CWE-287: Improper Authentication",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-23T15:35:18",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "zdi-disclosures@trendmicro.com",
"ID": "CVE-2020-10918",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HMI EA9",
"version": {
"version_data": [
{
"version_value": "Firmware version 6.52"
}
]
}
}
]
},
"vendor_name": "C-MORE"
}
]
}
},
"credit": "Anonymous",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism. The issue is due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from unauthenticated users. Was ZDI-CAN-10182."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-287: Improper Authentication"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/",
"refsource": "MISC",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2020-10918",
"datePublished": "2020-07-23T15:35:18",
"dateReserved": "2020-03-24T00:00:00",
"dateUpdated": "2024-08-04T11:14:15.682Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-10920 (GCVE-0-2020-10920)
Vulnerability from cvelistv5
Published
2020-07-23 15:35
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-306 - Missing Authentication for Critical Function
Summary
This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the control service, which listens on TCP port 9999 by default. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-10493.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:15.788Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HMI EA9",
"vendor": "C-MORE",
"versions": [
{
"status": "affected",
"version": "Firmware version 6.52"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)"
}
],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the control service, which listens on TCP port 9999 by default. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-10493."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-306",
"description": "CWE-306: Missing Authentication for Critical Function",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-23T15:35:19",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "zdi-disclosures@trendmicro.com",
"ID": "CVE-2020-10920",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HMI EA9",
"version": {
"version_data": [
{
"version_value": "Firmware version 6.52"
}
]
}
}
]
},
"vendor_name": "C-MORE"
}
]
}
},
"credit": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the control service, which listens on TCP port 9999 by default. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-10493."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-306: Missing Authentication for Critical Function"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/",
"refsource": "MISC",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2020-10920",
"datePublished": "2020-07-23T15:35:19",
"dateReserved": "2020-03-24T00:00:00",
"dateUpdated": "2024-08-04T11:14:15.788Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-10919 (GCVE-0-2020-10919)
Vulnerability from cvelistv5
Published
2020-07-23 15:35
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-261 - Weak Cryptography for Passwords
Summary
This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:15.726Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HMI EA9",
"vendor": "C-MORE",
"versions": [
{
"status": "affected",
"version": "Firmware version 6.52"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)"
}
],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-261",
"description": "CWE-261: Weak Cryptography for Passwords",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-09-26T21:30:13",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "zdi-disclosures@trendmicro.com",
"ID": "CVE-2020-10919",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HMI EA9",
"version": {
"version_data": [
{
"version_value": "Firmware version 6.52"
}
]
}
}
]
},
"vendor_name": "C-MORE"
}
]
}
},
"credit": "Ta-Lun Yen \u0026 Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-261: Weak Cryptography for Passwords"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/",
"refsource": "MISC",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2020-10919",
"datePublished": "2020-07-23T15:35:18",
"dateReserved": "2020-03-24T00:00:00",
"dateUpdated": "2024-08-04T11:14:15.726Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-10922 (GCVE-0-2020-10922)
Vulnerability from cvelistv5
Published
2020-07-23 15:35
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-20 - Improper Input Validation
Summary
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of proper input validation prior to further processing user requests. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-10527.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:15.785Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HMI EA9",
"vendor": "C-MORE",
"versions": [
{
"status": "affected",
"version": "Firmware version 6.52"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "evanslify"
}
],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of proper input validation prior to further processing user requests. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-10527."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20: Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-23T15:35:20",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "zdi-disclosures@trendmicro.com",
"ID": "CVE-2020-10922",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HMI EA9",
"version": {
"version_data": [
{
"version_value": "Firmware version 6.52"
}
]
}
}
]
},
"vendor_name": "C-MORE"
}
]
}
},
"credit": "evanslify",
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of proper input validation prior to further processing user requests. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-10527."
}
]
},
"impact": {
"cvss": {
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20: Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/",
"refsource": "MISC",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2020-10922",
"datePublished": "2020-07-23T15:35:20",
"dateReserved": "2020-03-24T00:00:00",
"dateUpdated": "2024-08-04T11:14:15.785Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Vulnerability from fkie_nvd
Published
2020-07-23 16:15
Modified
2024-11-21 04:56
Severity ?
Summary
This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism. The issue is due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from unauthenticated users. Was ZDI-CAN-10182.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-20-805/ | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-20-805/ | Third Party Advisory, VDB Entry |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:automationdirect:c-more_hmi_ea9_firmware:6.52:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C98599-C96A-4EEE-BC82-A6F01398E077",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:automationdirect:ea9-pgmsw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656B3283-FA47-4CCF-A124-FBAEC86BB7A7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-rhmi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DD7D15B5-FC1D-4B0E-85CC-CEF3A68C2BA4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "584FBF19-4AFB-425F-9A78-A450C8EF4D74",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10wcl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F79F5A11-21E8-4126-8333-1DEAFD91100E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t12cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BC5B7-55B3-41FC-959F-745171FD6AB8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E6454D-E722-45DA-8AD7-4469DA515B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B271A9F-5E71-4C03-8A78-84398183903C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43E2E05B-41C9-4BE6-9344-2A78C3CE0B11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF5C6D94-BFA6-48FF-9776-FA7C91ABE1CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABC8D7A3-A3CD-4C6F-8256-FD91927C1CE4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BE509D4-C93C-4A7F-B5C9-892073640916",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t8cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66885733-FD7F-4BAB-9F41-1823372FBA6D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism. The issue is due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from unauthenticated users. Was ZDI-CAN-10182."
},
{
"lang": "es",
"value": "Esta vulnerabilidad permite a atacantes remotos omitir la autenticaci\u00f3n en las instalaciones afectadas de los paneles de control de la pantalla t\u00e1ctil C-MORE HMI EA9 versi\u00f3n de Firmware 6.52. No es requerida una autenticaci\u00f3n para explotar esta vulnerabilidad. El fallo espec\u00edfico se presenta dentro del mecanismo de autenticaci\u00f3n. El problema es debido a una autenticaci\u00f3n insuficiente en las peticiones posteriores a la autenticaci\u00f3n. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios a recursos normalmente protegidos de usuarios no autenticados. Fue ZDI-CAN-10182"
}
],
"id": "CVE-2020-10918",
"lastModified": "2024-11-21T04:56:22.060",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-23T16:15:12.083",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-805/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-07-23 16:15
Modified
2024-11-21 04:56
Severity ?
Summary
This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-20-806/ | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-20-806/ | Third Party Advisory, VDB Entry |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:automationdirect:c-more_hmi_ea9_firmware:6.52:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C98599-C96A-4EEE-BC82-A6F01398E077",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:automationdirect:ea9-pgmsw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656B3283-FA47-4CCF-A124-FBAEC86BB7A7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-rhmi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DD7D15B5-FC1D-4B0E-85CC-CEF3A68C2BA4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "584FBF19-4AFB-425F-9A78-A450C8EF4D74",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10wcl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F79F5A11-21E8-4126-8333-1DEAFD91100E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t12cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BC5B7-55B3-41FC-959F-745171FD6AB8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E6454D-E722-45DA-8AD7-4469DA515B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B271A9F-5E71-4C03-8A78-84398183903C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43E2E05B-41C9-4BE6-9344-2A78C3CE0B11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF5C6D94-BFA6-48FF-9776-FA7C91ABE1CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABC8D7A3-A3CD-4C6F-8256-FD91927C1CE4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BE509D4-C93C-4A7F-B5C9-892073640916",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t8cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66885733-FD7F-4BAB-9F41-1823372FBA6D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185."
},
{
"lang": "es",
"value": "Esta vulnerabilidad permite a los atacantes remotos revelar informaci\u00f3n sensible en las instalaciones afectadas de los paneles de pantalla t\u00e1ctil C-MORE HMI EA9 Firmware versi\u00f3n 6.52. La autenticaci\u00f3n no es necesaria para explotar esta vulnerabilidad. El fallo espec\u00edfico existe en el manejo de las contrase\u00f1as. Al transmitir las contrase\u00f1as, el proceso las encripta en un formato recuperable. Un atacante puede aprovechar esta vulnerabilidad para revelar las credenciales, lo que llevar\u00eda a un mayor compromiso. Era ZDI-CAN-10185"
}
],
"id": "CVE-2020-10919",
"lastModified": "2024-11-21T04:56:22.183",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-23T16:15:12.193",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-806/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-261"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-326"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-07-23 16:15
Modified
2024-11-21 04:56
Severity ?
Summary
This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. Was ZDI-CAN-10482.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-20-807/ | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-20-807/ | Third Party Advisory, VDB Entry |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:automationdirect:c-more_hmi_ea9_firmware:6.52:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C98599-C96A-4EEE-BC82-A6F01398E077",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:automationdirect:ea9-pgmsw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656B3283-FA47-4CCF-A124-FBAEC86BB7A7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-rhmi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DD7D15B5-FC1D-4B0E-85CC-CEF3A68C2BA4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "584FBF19-4AFB-425F-9A78-A450C8EF4D74",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10wcl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F79F5A11-21E8-4126-8333-1DEAFD91100E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t12cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BC5B7-55B3-41FC-959F-745171FD6AB8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E6454D-E722-45DA-8AD7-4469DA515B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B271A9F-5E71-4C03-8A78-84398183903C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43E2E05B-41C9-4BE6-9344-2A78C3CE0B11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF5C6D94-BFA6-48FF-9776-FA7C91ABE1CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABC8D7A3-A3CD-4C6F-8256-FD91927C1CE4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BE509D4-C93C-4A7F-B5C9-892073640916",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t8cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66885733-FD7F-4BAB-9F41-1823372FBA6D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. Was ZDI-CAN-10482."
},
{
"lang": "es",
"value": "Esta vulnerabilidad permite a atacantes remotos emitir comandos en las instalaciones afectadas de los paneles de control de la pantalla t\u00e1ctil C-MORE HMI EA9 versi\u00f3n de Firmware 6.52. No es requerida una autenticaci\u00f3n para explotar esta vulnerabilidad. El fallo espec\u00edfico se presenta dentro del proceso EA-HTTP.exe. El problema resulta de una falta de autenticaci\u00f3n antes de permitir modificaciones en la configuraci\u00f3n del sistema. Un atacante puede aprovechar esta vulnerabilidad para emitir comandos al equipo f\u00edsico controlado por el dispositivo. Fue ZDI-CAN-10482"
}
],
"id": "CVE-2020-10921",
"lastModified": "2024-11-21T04:56:22.447",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-23T16:15:12.350",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-807/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-306"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-07-23 16:15
Modified
2024-11-21 04:56
Severity ?
Summary
This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the control service, which listens on TCP port 9999 by default. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-10493.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-20-808/ | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-20-808/ | Third Party Advisory, VDB Entry |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:automationdirect:c-more_hmi_ea9_firmware:6.52:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C98599-C96A-4EEE-BC82-A6F01398E077",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:automationdirect:ea9-pgmsw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656B3283-FA47-4CCF-A124-FBAEC86BB7A7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-rhmi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DD7D15B5-FC1D-4B0E-85CC-CEF3A68C2BA4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "584FBF19-4AFB-425F-9A78-A450C8EF4D74",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10wcl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F79F5A11-21E8-4126-8333-1DEAFD91100E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t12cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BC5B7-55B3-41FC-959F-745171FD6AB8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E6454D-E722-45DA-8AD7-4469DA515B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B271A9F-5E71-4C03-8A78-84398183903C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43E2E05B-41C9-4BE6-9344-2A78C3CE0B11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF5C6D94-BFA6-48FF-9776-FA7C91ABE1CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABC8D7A3-A3CD-4C6F-8256-FD91927C1CE4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BE509D4-C93C-4A7F-B5C9-892073640916",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t8cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66885733-FD7F-4BAB-9F41-1823372FBA6D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the control service, which listens on TCP port 9999 by default. The issue results from the lack of authentication prior to allowing alterations to the system configuration. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-10493."
},
{
"lang": "es",
"value": "Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de los paneles de control de la pantalla t\u00e1ctil C-MORE HMI EA9 versi\u00f3n de Firmware 6.52. No es requerida una autenticaci\u00f3n para explotar esta vulnerabilidad. El fallo espec\u00edfico se presenta dentro del servicio de control, que escucha en el puerto TCP 9999 por defecto. El problema resulta de una falta de autenticaci\u00f3n antes de permitir modificaciones en la configuraci\u00f3n del sistema. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del dispositivo. Fue ZDI-CAN-10493"
}
],
"id": "CVE-2020-10920",
"lastModified": "2024-11-21T04:56:22.320",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-23T16:15:12.257",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-808/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-306"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-07-23 16:15
Modified
2024-11-21 04:56
Severity ?
Summary
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of proper input validation prior to further processing user requests. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-10527.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-20-809/ | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-20-809/ | Third Party Advisory, VDB Entry |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:automationdirect:c-more_hmi_ea9_firmware:6.52:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C98599-C96A-4EEE-BC82-A6F01398E077",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:automationdirect:ea9-pgmsw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656B3283-FA47-4CCF-A124-FBAEC86BB7A7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-rhmi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DD7D15B5-FC1D-4B0E-85CC-CEF3A68C2BA4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "584FBF19-4AFB-425F-9A78-A450C8EF4D74",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t10wcl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F79F5A11-21E8-4126-8333-1DEAFD91100E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t12cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BC5B7-55B3-41FC-959F-745171FD6AB8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E6454D-E722-45DA-8AD7-4469DA515B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t15cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B271A9F-5E71-4C03-8A78-84398183903C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43E2E05B-41C9-4BE6-9344-2A78C3CE0B11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t6cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF5C6D94-BFA6-48FF-9776-FA7C91ABE1CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABC8D7A3-A3CD-4C6F-8256-FD91927C1CE4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t7cl-r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BE509D4-C93C-4A7F-B5C9-892073640916",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:automationdirect:ea9-t8cl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66885733-FD7F-4BAB-9F41-1823372FBA6D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issue results from the lack of proper input validation prior to further processing user requests. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-10527."
},
{
"lang": "es",
"value": "Esta vulnerabilidad permite a atacantes remotos crear una condici\u00f3n de denegaci\u00f3n de servicio en las instalaciones afectadas de los paneles de control de la pantalla t\u00e1ctil C-MORE HMI EA9 versi\u00f3n de Firmware 6.52. No es requerida una autenticaci\u00f3n para explotar esta vulnerabilidad. El fallo espec\u00edfico se presenta dentro del proceso EA-HTTP.exe. El problema resulta de la falta de una comprobaci\u00f3n de entrada apropiada antes de procesar las peticiones de los usuarios. Un atacante puede aprovechar esta vulnerabilidad para crear una condici\u00f3n de denegaci\u00f3n de servicio en el sistema. Fue ZDI-CAN-10527"
}
],
"id": "CVE-2020-10922",
"lastModified": "2024-11-21T04:56:22.577",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-23T16:15:12.427",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-809/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}