Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-1285 (GCVE-0-2018-1285)
Vulnerability from cvelistv5 – Published: 2020-05-11 16:41 – Updated: 2024-08-05 03:59
VLAI
EPSS
Summary
Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.
Severity
No CVSS data available.
CWE
- XXE
Assigner
References
17 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| n/a | Apache log4net |
Affected:
Apache log4net up to 2.0.8
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T03:59:37.654Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2020-cfc319e067",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/"
},
{
"name": "FEDORA-2020-73d380e9b9",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/"
},
{
"name": "FEDORA-2020-847775bf79",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/"
},
{
"name": "[logging-dev] 20200525 [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200525 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200617 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200730 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 log4net.dll - does 2.0.9 fix CVE-2018-1285",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 Re: log4net.dll - does 2.0.9 fix CVE-2018-1285",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200906 [VOTE] [log4net] Release 2.0.10",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://issues.apache.org/jira/browse/LOG4NET-575"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
},
{
"name": "[logging-dev] 20210817 Solution for vulnerability",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20220909-0001/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Apache log4net",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Apache log4net up to 2.0.8"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "XXE",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-09-09T17:06:20.000Z",
"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"shortName": "apache"
},
"references": [
{
"name": "FEDORA-2020-cfc319e067",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/"
},
{
"name": "FEDORA-2020-73d380e9b9",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/"
},
{
"name": "FEDORA-2020-847775bf79",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/"
},
{
"name": "[logging-dev] 20200525 [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200525 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200617 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200730 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 log4net.dll - does 2.0.9 fix CVE-2018-1285",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 Re: log4net.dll - does 2.0.9 fix CVE-2018-1285",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200906 [VOTE] [log4net] Release 2.0.10",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://issues.apache.org/jira/browse/LOG4NET-575"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
},
{
"name": "[logging-dev] 20210817 Solution for vulnerability",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20220909-0001/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2018-1285",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Apache log4net",
"version": {
"version_data": [
{
"version_value": "Apache log4net up to 2.0.8"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "XXE"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2020-cfc319e067",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/"
},
{
"name": "FEDORA-2020-73d380e9b9",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/"
},
{
"name": "FEDORA-2020-847775bf79",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/"
},
{
"name": "[logging-dev] 20200525 [CVE-2018-1285] XXE vulnerability in Apache log4net",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200525 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200617 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200730 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 log4net.dll - does 2.0.9 fix CVE-2018-1285",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200826 Re: log4net.dll - does 2.0.9 fix CVE-2018-1285",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732@%3Cdev.logging.apache.org%3E"
},
{
"name": "[logging-dev] 20200906 [VOTE] [log4net] Release 2.0.10",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872@%3Cdev.logging.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"name": "https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E",
"refsource": "MISC",
"url": "https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E"
},
{
"name": "https://issues.apache.org/jira/browse/LOG4NET-575",
"refsource": "MISC",
"url": "https://issues.apache.org/jira/browse/LOG4NET-575"
},
{
"name": "https://www.oracle.com/security-alerts/cpuApr2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
},
{
"name": "[logging-dev] 20210817 Solution for vulnerability",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3@%3Cdev.logging.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220909-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220909-0001/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"assignerShortName": "apache",
"cveId": "CVE-2018-1285",
"datePublished": "2020-05-11T16:41:28.000Z",
"dateReserved": "2017-12-07T00:00:00.000Z",
"dateUpdated": "2024-08-05T03:59:37.654Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-1285",
"date": "2026-05-29",
"epss": "0.65576",
"percentile": "0.98513"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:log4net:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.0.10\", \"matchCriteriaId\": \"25722484-A982-4D6B-A740-7196B27E1E06\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36D96259-24BD-44E2-96D9-78CE1D41F956\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A125E817-F974-4509-872C-B71933F42AD1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:hospitality_opera_5:5.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A1817C30-7B0B-441A-9567-B8DD7C6E646C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:hospitality_opera_5:5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95D6A426-B914-401F-9AB0-5F5E3A3FE138\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:hospitality_simphony:18.2.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"455173C4-7FCF-45F9-8F6F-DC00D77B32A6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:hospitality_simphony:19.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"642DE02B-F471-4922-9AFB-FBA0C29D7E8A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D39DCAE7-494F-40B2-867F-6C6A077939DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.\"}, {\"lang\": \"es\", \"value\": \"Apache log4net versiones anteriores a 2.0.10, no deshabilita las entidades externas XML cuando analiza los archivos de configuraci\\u00f3n de log4net. Esto permite realizar ataques basados en XXE en aplicaciones que aceptan archivos de configuraci\\u00f3n log4net controlados por el atacante\"}]",
"id": "CVE-2018-1285",
"lastModified": "2024-11-21T03:59:32.683",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2020-05-11T17:15:10.923",
"references": "[{\"url\": \"https://issues.apache.org/jira/browse/LOG4NET-575\", \"source\": \"security@apache.org\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E\", \"source\": \"security@apache.org\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220909-0001/\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuApr2021.html\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2021.html\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://issues.apache.org/jira/browse/LOG4NET-575\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220909-0001/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuApr2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "security@apache.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-611\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-1285\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2020-05-11T17:15:10.923\",\"lastModified\":\"2024-11-21T03:59:32.683\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.\"},{\"lang\":\"es\",\"value\":\"Apache log4net versiones anteriores a 2.0.10, no deshabilita las entidades externas XML cuando analiza los archivos de configuraci\u00f3n de log4net. Esto permite realizar ataques basados en XXE en aplicaciones que aceptan archivos de configuraci\u00f3n log4net controlados por el atacante\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-611\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:log4net:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.0.10\",\"matchCriteriaId\":\"25722484-A982-4D6B-A740-7196B27E1E06\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36D96259-24BD-44E2-96D9-78CE1D41F956\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A125E817-F974-4509-872C-B71933F42AD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_opera_5:5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1817C30-7B0B-441A-9567-B8DD7C6E646C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_opera_5:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95D6A426-B914-401F-9AB0-5F5E3A3FE138\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_simphony:18.2.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"455173C4-7FCF-45F9-8F6F-DC00D77B32A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_simphony:19.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"642DE02B-F471-4922-9AFB-FBA0C29D7E8A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D39DCAE7-494F-40B2-867F-6C6A077939DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}]}]}],\"references\":[{\"url\":\"https://issues.apache.org/jira/browse/LOG4NET-575\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/\",\"source\":\"security@apache.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20220909-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuApr2021.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2021.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://issues.apache.org/jira/browse/LOG4NET-575\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r00b16ac5e0bbf7009a0d167ed58f3f94d0033b0f4b3e3d5025cc4872%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r33564de316d4e4ba0fea1d4d079e62cde1ffe64369c1157243d840d9%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r525cbbd7db0aef4a114cf60de8439aa285decc34904d42a7f14f39c3%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9de86a185575e6c5f92e2a70a1d2e2e9514dc4341251577aac8e3866%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd2d72a017e238d1f345f9d14e075c81be16fc68a41c9e9ad9e29a732%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rdbac24c945ca5c69cd5348b5ac023bc625768f653335de146e09ae2d%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/reab1c277c95310bad1038255e0757857b2fbe291411b4fa84552028a%40%3Cdev.logging.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2U233HVAQDSZ2PRG4XSGDASLY3J6ALH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VKL2LPINAI6BCMXOH4V4HVHGLUXIWOFO/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT2DNNSW7C7FNK3MA3SLEUHGW5USYZKE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20220909-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuApr2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
ICSA-25-142-02
Vulnerability from csaf_cisa - Published: 2025-05-22 06:00 - Updated: 2025-05-22 06:00Summary
Rockwell Automation FactoryTalk Historian ThingWorx
Notes
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation: Successful exploitation of this vulnerability could allow an attacker to launch XXE-based attacks on applications that accept malicious log4net configuration files.
Critical infrastructure sectors: Critical Manufacturing
Countries/areas deployed: Worldwide
Company headquarters location: United States
Recommended Practices: CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:
Recommended Practices: Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the Internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolating them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as the connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices: CISA also recommends users take the following measures to protect themselves from social engineering attacks:
Recommended Practices: Do not click web links or open attachments in unsolicited email messages.
Recommended Practices: Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.
Recommended Practices: Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.
Recommended Practices: No known public exploitation specifically targeting this vulnerability has been reported to CISA at this time.
9.8 (Critical)
References
13 references
Acknowledgments
Rockwell Automation
{
"document": {
"acknowledgments": [
{
"organization": "Rockwell Automation",
"summary": "reporting this vulnerability to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of this vulnerability could allow an attacker to launch XXE-based attacks on applications that accept malicious log4net configuration files.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "United States",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the Internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolating them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as the connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Do not click web links or open attachments in unsolicited email messages.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "No known public exploitation specifically targeting this vulnerability has been reported to CISA at this time.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-25-142-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-142-02.json"
},
{
"category": "self",
"summary": "ICSA Advisory ICSA-25-142-02 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-142-02"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Rockwell Automation FactoryTalk Historian ThingWorx",
"tracking": {
"current_release_date": "2025-05-22T06:00:00.000000Z",
"generator": {
"date": "2025-05-22T14:24:02.002000Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-25-142-02",
"initial_release_date": "2025-05-22T06:00:00.000000Z",
"revision_history": [
{
"date": "2025-05-22T06:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=v4.02.00",
"product": {
"name": "Rockwell Automation 95057C-FTHTWXCT11: \u003c=v4.02.00",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "95057C-FTHTWXCT11"
}
],
"category": "vendor",
"name": "Rockwell Automation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1285",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "summary",
"text": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1285"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation released a product update addressing this vulnerability:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "95057C-FTHTWXCT11: Versions v5.00.00 and later",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "For information on how to mitigate security risks on industrial automation control systems, Rockwell Automation encourages users to implement their suggested security best practices to minimize the risk of the vulnerability.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight"
},
{
"category": "mitigation",
"details": "For more information, see Rockwell Automation Security Advisory SD1728.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1728.html"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
ICSMA-23-194-01
Vulnerability from csaf_cisa - Published: 2023-07-13 06:00 - Updated: 2023-10-26 06:00Summary
BD Alaris System with Guardrails Suite MX
Notes
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation: Successful exploitation of these vulnerabilities could allow an attacker to compromise sensitive data, hijack a session, modify firmware, make changes to system configurations, among other system impacts.
Critical infrastructure sectors: Healthcare, Public Health
Countries/areas deployed: Worldwide
Company headquarters location: United States
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices: CISA also recommends users take the following measures to protect themselves from social engineering attacks:
Recommended Practices: Do not click web links or open attachments in unsolicited email messages.
Recommended Practices: Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.
Recommended Practices: Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.
Recommended Practices: No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time.
5.2 (Medium)
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
6.8 (Medium)
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
6.1 (Medium)
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
6.7 (Medium)
Affected products
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: 12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
12.1.3 |
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
8.2 (High)
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
6.9 (Medium)
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
CWE-319
- Cleartext Transmission of Sensitive Information
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
CWE-611
- Improper Restriction of XML External Entity Reference
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BD Alaris Point-of-Care Unit (PCU) Model 8015: <=12.1.3
Becton, Dickinson and Company (BD) / BD Alaris Point-of-Care Unit (PCU) Model 8015
|
<=12.1.3 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Guardrails Editor: <=12.1.2
Becton, Dickinson and Company (BD) / BD Alaris Guardrails Editor
|
<=12.1.2 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
BD Alaris Systems Manager: <=12.3
Becton, Dickinson and Company (BD) / BD Alaris Systems Manager
|
<=12.3 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
CQI Reporter: <=10.17
Becton, Dickinson and Company (BD) / CQI Reporter
|
<=10.17 |
Mitigation
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
|
|
Calculation Services: <=1.0
Becton, Dickinson and Company (BD) / Calculation Services
|
<=1.0 |
Mitigation
Vendor Fix
Mitigation
Mitigation
fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
|
References
26 references
Acknowledgments
BD
{
"document": {
"acknowledgments": [
{
"organization": "BD",
"summary": "reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities could allow an attacker to compromise sensitive data, hijack a session, modify firmware, make changes to system configurations, among other system impacts.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Healthcare, Public Health",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "United States",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Do not click web links or open attachments in unsolicited email messages.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSMA-23-194-01 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsma-23-194-01.json"
},
{
"category": "self",
"summary": "ICSA Advisory ICSMA-23-194-01 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-medical-advisories/icsma-23-194-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "BD Alaris System with Guardrails Suite MX",
"tracking": {
"current_release_date": "2023-10-26T06:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSMA-23-194-01",
"initial_release_date": "2023-07-13T06:00:00.000000Z",
"revision_history": [
{
"date": "2023-07-13T06:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
},
{
"date": "2023-10-26T06:00:00.000000Z",
"legacy_version": "Update A",
"number": "2",
"summary": "Update A - Updates to Mitigations (BD has released BD Alaris System 12.3, which remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565 and partially remediates CVE-2023-30562)"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=12.1.3",
"product": {
"name": "BD Alaris Point-of-Care Unit (PCU) Model 8015: \u003c=12.1.3",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "BD Alaris Point-of-Care Unit (PCU) Model 8015"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=12.1.2",
"product": {
"name": "BD Alaris Guardrails Editor: \u003c=12.1.2",
"product_id": "CSAFPID-0002"
}
},
{
"category": "product_version",
"name": "12.1.3",
"product": {
"name": "BD Alaris Guardrails Editor: 12.1.3",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "BD Alaris Guardrails Editor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=12.3",
"product": {
"name": "BD Alaris Systems Manager: \u003c=12.3",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "BD Alaris Systems Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=10.17",
"product": {
"name": "CQI Reporter: \u003c=10.17",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "CQI Reporter"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.0",
"product": {
"name": "Calculation Services: \u003c=1.0",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "Calculation Services"
}
],
"category": "vendor",
"name": "Becton, Dickinson and Company (BD)"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-30559",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In BD Alaris Point-of-Care Unit (PCU) Model 8015 v12.1.3 and prior, the firmware update package for the wireless card is not properly signed and can be modified.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30559"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD also updated the BD Alaris PCU Model 8015 to version 12.3.1 when the BD Alaris System 12.3 was released. The following CVEs are still present on the BD Alaris PCU Model 8015 version 12.3.1: CVE-2023-30559, CVE-2023-30560, and CVE-2023-30561. This bulletin will be updated with additional remediation information when available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2023-30560",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "In BD Alaris Point-of-Care Unit (PCU) Model 8015 v12.1.3 and prior, the configuration from the PCU can be modified without authentication using physical connection to the PCU.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30560"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD also updated the BD Alaris PCU Model 8015 to version 12.3.1 when the BD Alaris System 12.3 was released. The following CVEs are still present on the BD Alaris PCU Model 8015 version 12.3.1: CVE-2023-30559, CVE-2023-30560, and CVE-2023-30561. This bulletin will be updated with additional remediation information when available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2023-30561",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In BD Alaris Point-of-Care Unit (PCU) Model 8015 v12.1.3 and prior, the data flowing between the PCU and its modules is insecure. A threat actor with physical access could read or modify data by attaching a specially crafted device while an infusion is running.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30561"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD also updated the BD Alaris PCU Model 8015 to version 12.3.1 when the BD Alaris System 12.3 was released. The following CVEs are still present on the BD Alaris PCU Model 8015 version 12.3.1: CVE-2023-30559, CVE-2023-30560, and CVE-2023-30561. This bulletin will be updated with additional remediation information when available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2023-30562",
"cwe": {
"id": "CWE-345",
"name": "Insufficient Verification of Data Authenticity"
},
"notes": [
{
"category": "summary",
"text": "BD Alaris Guardrails Editor (GRE) v12.1.2 and prior has a GRE dataset file within Systems Manager that can be tampered with and distributed to the PCUs.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30562"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris Systems Manager Software version 12.5.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0003"
]
},
{
"category": "vendor_fix",
"details": "Calculation Services, version 1.1.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD Alaris System 12.3, which includes BD Alaris Guardrails Editor version 12.1.3, partially remediates CVE-2023-30562 and reduces the CVSS score from 6.7 (Medium) to 3.0 (Low). Additional information is provided under Vulnerability Details. For additional information is please reference the updated CVSS vector string provided: CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"product_ids": [
"CSAFPID-0002",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"cvss_v3": {
"baseScore": 3.0,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0006"
]
}
]
},
{
"cve": "CVE-2023-30563",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In the BD Alaris Systems Manager (SM) v12.3 and prior, a malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30563"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris Systems Manager Software version 12.5.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0003"
]
},
{
"category": "vendor_fix",
"details": "Calculation Services, version 1.1.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2023-30564",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "BD Alaris Systems Manager (SM) v12.3 and prior does not perform input validation during the Device Import Function.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30564"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris Systems Manager Software version 12.5.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0003"
]
},
{
"category": "vendor_fix",
"details": "Calculation Services, version 1.1.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2023-30565",
"cwe": {
"id": "CWE-319",
"name": "Cleartext Transmission of Sensitive Information"
},
"notes": [
{
"category": "summary",
"text": "An insecure connection between Systems Manager and CQI Reporter v10.17 application could expose infusion data to an attacker.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-30565"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris Systems Manager Software version 12.5.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0003"
]
},
{
"category": "vendor_fix",
"details": "Calculation Services, version 1.1.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris System 12.3 is no longer compatible with the CQI Reporter version 10.17 and earlier. Therefore CVE-2023-30565 no longer applies.",
"product_ids": [
"CSAFPID-0004"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
},
{
"cve": "CVE-2018-1285",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "summary",
"text": "A lack of input validation within Apache Log4Net (due to an outdated software version) could allow a threat actor to execute malicious commands.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1285"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:L"
}
],
"remediations": [
{
"category": "mitigation",
"details": "BD has releaed BD Alaris System 12.3 with the following software:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "BD Alaris Systems Manager Software version 12.5.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0003"
]
},
{
"category": "vendor_fix",
"details": "Calculation Services, version 1.1.1 - Remediates CVE-2018-1285, CVE-2023-30563, CVE-2023-30564, and CVE-2023-30565; partially remediates CVE-2023-30562",
"product_ids": [
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends customers update to the BD Alaris System 12.3, where available based on regulatory authorization. Customers who require software updates should contact their BD Account Executive to assist with scheduling the remediation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For additional information, customers may request a copy of the latest BD Alaris System Product Security White Paper by visiting the BD Cybersecurity Trust Center.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity?lastUpdate=all-dates#trustcenter"
},
{
"category": "mitigation",
"details": "To reduce the risk associated with these vulnerabilities, BD recommends users implement the following mitigations and compensating controls:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Provide appropriate network perimeter security, such as using firewalls, or create Access Control Lists (ACL) to limit network traffic from devices to only the required ports on the required endpoints.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "The PCU only requires access to DNS, dynamic host configuration protocol (DHCP) and SM on port 3613. The PCU does not accept unsolicited inbound traffic.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "BD recommends segmenting BD Alaris PCUs onto a separate virtual local area network (VLAN) to further enhance the security of BD Alaris PCUs.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should control network access to the SM server image by restricting external access to only those addresses and ports indicated in Chapter 1 of the SM Virtual Machine Deployment Guide.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Users should apply SSL certificates from valid Certificate Authorities, per Chapter 9 of the same document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Follow Chapter 1 of the Alaris System Maintenance Software User Manual to enable an authentication challenge password for network configuration changes.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "See the Network Settings section of the Alaris System Maintenance User Manual for details on how to manage these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Network Settings in the Alaris System Maintenance User Manual details managing these credentials.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Monitor network traffic for unusual or unexpected traffic and activity. If users suspect credentials have been exposed, change credentials immediately.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Utilize MAC filtering on the network segment containing the BD Alaris System to restrict access to only those approved devices needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Periodically inspect BD Alaris System components to ensure running the correct software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use the instructions in Chapter 4 of the SM User Manual or Section 6.2.10 of the BD Alaris PCU and Pump Module Technical Service Manual to find software versions.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Adhere to industry security best practices regarding access control, identification and authorization, personnel security, and physical protection of assets, as recommended by NIST SP 800-171 Rev. 2.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Inspect the BD Alaris System prior to use for signs of tampering as indicated in the FIPS 140-2 Compliance Instructions for BD Alaris System Products Service Manual.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "For more information, refer to BD\u0027s security bulletin.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-alaris-system-with-guardrails-suite-mx"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.0,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
}
]
}
OPENSUSE-SU-2024:12311-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
log4net-1.2.10-78.1 on GA media
Severity
Moderate
Notes
Title of the patch: log4net-1.2.10-78.1 on GA media
Description of the patch: These are all security issues fixed in the log4net-1.2.10-78.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12311
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:log4net-1.2.10-78.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:log4net-1.2.10-78.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:log4net-1.2.10-78.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:log4net-1.2.10-78.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "log4net-1.2.10-78.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the log4net-1.2.10-78.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12311",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12311-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1285 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1285/"
}
],
"title": "log4net-1.2.10-78.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12311-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "log4net-1.2.10-78.1.aarch64",
"product": {
"name": "log4net-1.2.10-78.1.aarch64",
"product_id": "log4net-1.2.10-78.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "log4net-1.2.10-78.1.ppc64le",
"product": {
"name": "log4net-1.2.10-78.1.ppc64le",
"product_id": "log4net-1.2.10-78.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "log4net-1.2.10-78.1.s390x",
"product": {
"name": "log4net-1.2.10-78.1.s390x",
"product_id": "log4net-1.2.10-78.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "log4net-1.2.10-78.1.x86_64",
"product": {
"name": "log4net-1.2.10-78.1.x86_64",
"product_id": "log4net-1.2.10-78.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "log4net-1.2.10-78.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:log4net-1.2.10-78.1.aarch64"
},
"product_reference": "log4net-1.2.10-78.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "log4net-1.2.10-78.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:log4net-1.2.10-78.1.ppc64le"
},
"product_reference": "log4net-1.2.10-78.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "log4net-1.2.10-78.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:log4net-1.2.10-78.1.s390x"
},
"product_reference": "log4net-1.2.10-78.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "log4net-1.2.10-78.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:log4net-1.2.10-78.1.x86_64"
},
"product_reference": "log4net-1.2.10-78.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1285"
}
],
"notes": [
{
"category": "general",
"text": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:log4net-1.2.10-78.1.aarch64",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.ppc64le",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.s390x",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1285",
"url": "https://www.suse.com/security/cve/CVE-2018-1285"
},
{
"category": "external",
"summary": "SUSE Bug 1172193 for CVE-2018-1285",
"url": "https://bugzilla.suse.com/1172193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:log4net-1.2.10-78.1.aarch64",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.ppc64le",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.s390x",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:log4net-1.2.10-78.1.aarch64",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.ppc64le",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.s390x",
"openSUSE Tumbleweed:log4net-1.2.10-78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-1285"
}
]
}
VDE-2021-041
Vulnerability from csaf_pepperlfuchsse - Published: 2021-10-26 13:35 - Updated: 2025-05-22 13:03Summary
Pepperl+Fuchs: Multiple DTM and VisuNet Software affected by log4net vulnerability
Notes
Summary: Critical vulnerabilities have been discovered in the utilized component log4net by Apache Software Foundation.
UPDATE A: Remediation: added fixed VisuNet Products
Mitigation: External countermeasures are needed for the remaining products.
The following protective measure is required for VisuNet devices and the PCs/Servers with an installed DTM: \
Restrict local access to the device, PC/Server and use user authentication to prevent unauthorized access.
Remediation: The following affected DTM products can be updated to the listed version:
| Item | Version |
|--------------------------------------------|----------------|
| FieldConnex DTM Collection | 1.7.1.2159 |
| Diagnostic Manager | 2.2.3.3527 |
| FieldConnex Diagnostic Gateway FF DTM | 2.2.3.3527 |
| FDH-1 Manager | 1.0.2.1049 |
| ABB Project Builder | 1.1.2.1134 |
| Honeywell Integration Package | 1.1.3.0 |
| Emerson Integration Package [ADM Project Builder Emerson] | 1.1.4.1474 |
| Emerson Integration Package [AMS Alert Adapter] | 1.1.3.72 |
| DTM Collection HART-Multiplexer | 2.0.1.208 |
**UPDATE A**
The following affected VisuNet products can be updated to the listed version:
| Item | Version |
|------------------------------------------|---------------|
| VisuNet RM Shell 5 (2016 LTSB) | 5.5.1.1200 |
| VisuNet RM Shell 5 (2019 LTSC) | 5.6.0.1383 |
| VisuNet Factory Reset | 6.1.1.262 |
| VisuNet Control Center | 4.8.0.1596 |
| VisuNet GXP PC Service Tool | 1.1.1 |
END UPDATE A
Impact: Pepperl+Fuchs analyzed and identified affected devices.
In table 'Affected products' packages are listed next to some products, this means that the products are only affected if the corresponding software is installed since the package implements the vulnerability.
To exploit the vulnerability, the access rights of an authorized user or admin are required.
The impact of the vulnerability on the affected products may result in
- Denial of Service
- Loss of Credentials
- Code Execution
The CVSS environmental score is specific to the customer's environment and should therefore be individually assessed by the customer to accomplish final scoring.
Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.
9.8 (Critical)
Mitigation
External countermeasures are needed for the remaining products.
The following protective measure is required for VisuNet devices and the PCs/Servers with an installed DTM:
Restrict local access to the device, PC/Server and use user authentication to prevent unauthorized access.
Vendor Fix
The following affected DTM products can be updated to the listed version:
| Item | Version |
|--------------------------------------------|----------------|
| FieldConnex DTM Collection | 1.7.1.2159 |
| Diagnostic Manager | 2.2.3.3527 |
| FieldConnex Diagnostic Gateway FF DTM | 2.2.3.3527 |
| FDH-1 Manager | 1.0.2.1049 |
| ABB Project Builder | 1.1.2.1134 |
| Honeywell Integration Package | 1.1.3.0 |
| Emerson Integration Package [ADM Project Builder Emerson] | 1.1.4.1474 |
| Emerson Integration Package [AMS Alert Adapter] | 1.1.3.72 |
| DTM Collection HART-Multiplexer | 2.0.1.208 |
UPDATE A
The following affected VisuNet products can be updated to the listed version:
| Item | Version |
|------------------------------------------|---------------|
| VisuNet RM Shell 5 (2016 LTSB) | 5.5.1.1200 |
| VisuNet RM Shell 5 (2019 LTSC) | 5.6.0.1383 |
| VisuNet Factory Reset | 6.1.1.262 |
| VisuNet Control Center | 4.8.0.1596 |
| VisuNet GXP PC Service Tool | 1.1.1 |
END UPDATE A
Affected products
Known affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
ABB Project Builder <=1.1.1.1122
Pepperl+Fuchs / Software / ABB Project Builder
|
<=1.1.1.1122 | ||
|
ADM Project Builder Emerson in Emerson Integration Package <=1.1.3.1463
Pepperl+Fuchs / Software / ADM Project Builder Emerson in Emerson Integration Package
|
<=1.1.3.1463 | ||
|
All contained DTMs in Diagnostic Manager 2.0.0.1177<=2.2.2.3478
Pepperl+Fuchs / Software / All contained DTMs in Diagnostic Manager
|
2.0.0.1177<=2.2.2.3478 | ||
|
All contained DTMs in DTM Collection HART-Multiplexer <=2.0.0.130
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection HART-Multiplexer
|
<=2.0.0.130 | ||
|
All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57 <=1.0.31
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57
|
<=1.0.31 | ||
|
All contained DTMs in DTM Collection WirelessHART <=1.0.2.4
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection WirelessHART
|
<=1.0.2.4 | ||
|
All contained DTMs in DTM Library HART used with 6500 Series <=2.4.11.59
Pepperl+Fuchs / Software / All contained DTMs in DTM Library HART used with 6500 Series
|
<=2.4.11.59 | ||
|
All contained DTMs in FieldConnex Diagnostic Gateway FF DTM <=2.2.2.3478
Pepperl+Fuchs / Software / All contained DTMs in FieldConnex Diagnostic Gateway FF DTM
|
<=2.2.2.3478 | ||
|
All contained DTMs in HART DTM Library Enhanced used with PS3500-DM <=2.4.11.59
Pepperl+Fuchs / Software / All contained DTMs in HART DTM Library Enhanced used with PS3500-DM
|
<=2.4.11.59 | ||
|
All contained DTMs in TMI-FF DTM <=2.6.3.10
Pepperl+Fuchs / Software / All contained DTMs in TMI-FF DTM
|
<=2.6.3.10 | ||
|
AMS Alert Adapter in Emerson Integration Package <=1.1.3.1463
Pepperl+Fuchs / Software / AMS Alert Adapter in Emerson Integration Package
|
<=1.1.3.1463 | ||
|
FDH-1 Manager <=1.0.1.1022
Pepperl+Fuchs / Software / FDH-1 Manager
|
<=1.0.1.1022 | ||
|
P+F DTMLibrary Modbus in DTM used with S1SD-1TI-1U V2.3.68
Pepperl+Fuchs / Software / P+F DTMLibrary Modbus in DTM used with S1SD-1TI-1U
|
V2.3.68 | ||
|
VisuNet Control Center <=4.7.1
Pepperl+Fuchs / Software / VisuNet Control Center
|
<=4.7.1 | ||
|
VisuNet Factory Reset 5.x
Pepperl+Fuchs / Software / VisuNet Factory Reset
|
5.x | ||
|
VisuNet Factory Reset <=6.1.0
Pepperl+Fuchs / Software / VisuNet Factory Reset
|
<=6.1.0 | ||
|
VisuNet GXP PC Service Tool <=1.1.0
Pepperl+Fuchs / Software / VisuNet GXP PC Service Tool
|
<=1.1.0 | ||
|
VisuNet RM Shell <=5.5.0
Pepperl+Fuchs / Software / VisuNet RM Shell
|
<=5.5.0 |
Fixed
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
ABB Project Builder 1.1.2.1134
Pepperl+Fuchs / Software / ABB Project Builder
|
1.1.2.1134 | ||
|
ADM Project Builder Emerson in Emerson Integration Package 1.1.4.1474
Pepperl+Fuchs / Software / ADM Project Builder Emerson in Emerson Integration Package
|
1.1.4.1474 | ||
|
All contained DTMs in Diagnostic Manager 2.2.3.3527
Pepperl+Fuchs / Software / All contained DTMs in Diagnostic Manager
|
2.2.3.3527 | ||
|
All contained DTMs in DTM Collection HART-Multiplexer 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection HART-Multiplexer
|
2.0.1.208 | ||
|
All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57
|
2.0.1.208 | ||
|
All contained DTMs in DTM Collection WirelessHART 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in DTM Collection WirelessHART
|
2.0.1.208 | ||
|
All contained DTMs in DTM Library HART used with 6500 Series 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in DTM Library HART used with 6500 Series
|
2.0.1.208 | ||
|
All contained DTMs in FieldConnex Diagnostic Gateway FF DTM 2.2.3.3527
Pepperl+Fuchs / Software / All contained DTMs in FieldConnex Diagnostic Gateway FF DTM
|
2.2.3.3527 | ||
|
All contained DTMs in HART DTM Library Enhanced used with PS3500-DM 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in HART DTM Library Enhanced used with PS3500-DM
|
2.0.1.208 | ||
|
All contained DTMs in TMI-FF DTM 2.0.1.208
Pepperl+Fuchs / Software / All contained DTMs in TMI-FF DTM
|
2.0.1.208 | ||
|
AMS Alert Adapter in Emerson Integration Package 1.1.3.72
Pepperl+Fuchs / Software / AMS Alert Adapter in Emerson Integration Package
|
1.1.3.72 | ||
|
FDH-1 Manager 1.0.2.1049
Pepperl+Fuchs / Software / FDH-1 Manager
|
1.0.2.1049 | ||
|
VisuNet Control Center 4.8.0.1596
Pepperl+Fuchs / Software / VisuNet Control Center
|
4.8.0.1596 | ||
|
VisuNet Factory Reset 6.1.1.262
Pepperl+Fuchs / Software / VisuNet Factory Reset
|
6.1.1.262 | ||
|
VisuNet Factory Reset 6.1.1.262
Pepperl+Fuchs / Software / VisuNet Factory Reset
|
6.1.1.262 | ||
|
VisuNet GXP PC Service Tool 1.1.1
Pepperl+Fuchs / Software / VisuNet GXP PC Service Tool
|
1.1.1 | ||
|
VisuNet RM Shell 5.5.1.1200
Pepperl+Fuchs / Software / VisuNet RM Shell
|
5.5.1.1200 | ||
|
VisuNet RM Shell 5.6.0.1383
Pepperl+Fuchs / Software / VisuNet RM Shell
|
5.6.0.1383 |
References
3 references
Acknowledgments
CERT@VDE
certvde.com
CodeWrights GmbH
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"organization": "CodeWrights GmbH",
"summary": "reported"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Critical vulnerabilities have been discovered in the utilized component log4net by Apache Software Foundation.\n\nUPDATE A: Remediation: added fixed VisuNet Products ",
"title": "Summary"
},
{
"category": "description",
"text": "External countermeasures are needed for the remaining products.\nThe following protective measure is required for VisuNet devices and the PCs/Servers with an installed DTM: \\\nRestrict local access to the device, PC/Server and use user authentication to prevent unauthorized access.",
"title": "Mitigation"
},
{
"category": "description",
"text": "The following affected DTM products can be updated to the listed version:\n\n| Item | Version |\n|--------------------------------------------|----------------|\n| FieldConnex DTM Collection | 1.7.1.2159 |\n| Diagnostic Manager | 2.2.3.3527 |\n| FieldConnex Diagnostic Gateway FF DTM | 2.2.3.3527 |\n| FDH-1 Manager | 1.0.2.1049 |\n| ABB Project Builder | 1.1.2.1134 |\n| Honeywell Integration Package | 1.1.3.0 |\n| Emerson Integration Package [ADM Project Builder Emerson] | 1.1.4.1474 |\n| Emerson Integration Package [AMS Alert Adapter] | 1.1.3.72 |\n| DTM Collection HART-Multiplexer | 2.0.1.208 |\n\n**UPDATE A**\n\nThe following affected VisuNet products can be updated to the listed version:\n\n| Item | Version |\n|------------------------------------------|---------------|\n| VisuNet RM Shell 5 (2016 LTSB) | 5.5.1.1200 |\n| VisuNet RM Shell 5 (2019 LTSC) | 5.6.0.1383 |\n| VisuNet Factory Reset | 6.1.1.262 |\n| VisuNet Control Center | 4.8.0.1596 |\n| VisuNet GXP PC Service Tool | 1.1.1 |\n\nEND UPDATE A\n",
"title": "Remediation"
},
{
"category": "description",
"text": "Pepperl+Fuchs analyzed and identified affected devices.\nIn table \u0027Affected products\u0027 packages are listed next to some products, this means that the products are only affected if the corresponding software is installed since the package implements the vulnerability.\n\nTo exploit the vulnerability, the access rights of an authorized user or admin are required. \n\nThe impact of the vulnerability on the affected products may result in\n\n- Denial of Service\n- Loss of Credentials\n- Code Execution\n\nThe CVSS environmental score is specific to the customer\u0027s environment and should therefore be individually assessed by the customer to accomplish final scoring.",
"title": "Impact"
}
],
"publisher": {
"category": "vendor",
"contact_details": "cert@pepperl-fuchs.com",
"name": "Pepperl+Fuchs SE",
"namespace": "https://www.pepperl-fuchs.com"
},
"references": [
{
"category": "external",
"summary": "Pepperl+Fuchs advisory overview at CERT@VDE",
"url": "https://certvde.com/de/advisories/vendor/pepperl+fuchs/"
},
{
"category": "self",
"summary": "VDE-2021-041: Pepperl+Fuchs: Multiple DTM and VisuNet Software affected by log4net vulnerability - HTML",
"url": "https://certvde.com/en/advisories/VDE-2021-041"
},
{
"category": "self",
"summary": "VDE-2021-041: Pepperl+Fuchs: Multiple DTM and VisuNet Software affected by log4net vulnerability - CSAF",
"url": "https://pepperl-fuchs.csaf-tp.certvde.com/.well-known/csaf/white/2021/vde-2021-041.json"
}
],
"title": "Pepperl+Fuchs: Multiple DTM and VisuNet Software affected by log4net vulnerability",
"tracking": {
"aliases": [
"VDE-2021-041"
],
"current_release_date": "2025-05-22T13:03:10.000Z",
"generator": {
"date": "2025-03-11T15:55:39.163Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.20"
}
},
"id": "VDE-2021-041",
"initial_release_date": "2021-10-26T13:35:00.000Z",
"revision_history": [
{
"date": "2021-10-26T13:35:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2022-01-17T15:16:00.000Z",
"number": "2",
"summary": "UPDATE A: add list of affected VisuNet products"
},
{
"date": "2025-05-22T13:03:10.000Z",
"number": "3",
"summary": "Fix: firmware category, quotation mark"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.1.1.1122",
"product": {
"name": "ABB Project Builder \u003c=1.1.1.1122",
"product_id": "CSAFPID-51001"
}
},
{
"category": "product_version",
"name": "1.1.2.1134",
"product": {
"name": "ABB Project Builder 1.1.2.1134",
"product_id": "CSAFPID-52001"
}
}
],
"category": "product_name",
"name": "ABB Project Builder"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.1.3.1463",
"product": {
"name": "ADM Project Builder Emerson in Emerson Integration Package \u003c=1.1.3.1463",
"product_id": "CSAFPID-51002"
}
},
{
"category": "product_version",
"name": "1.1.4.1474",
"product": {
"name": "ADM Project Builder Emerson in Emerson Integration Package 1.1.4.1474",
"product_id": "CSAFPID-52002"
}
}
],
"category": "product_name",
"name": "ADM Project Builder Emerson in Emerson Integration Package"
},
{
"branches": [
{
"category": "product_version_range",
"name": "2.0.0.1177\u003c=2.2.2.3478",
"product": {
"name": "All contained DTMs in Diagnostic Manager 2.0.0.1177\u003c=2.2.2.3478",
"product_id": "CSAFPID-51003"
}
},
{
"category": "product_version",
"name": "2.2.3.3527",
"product": {
"name": "All contained DTMs in Diagnostic Manager 2.2.3.3527",
"product_id": "CSAFPID-52003"
}
}
],
"category": "product_name",
"name": "All contained DTMs in Diagnostic Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.0.0.130",
"product": {
"name": "All contained DTMs in DTM Collection HART-Multiplexer \u003c=2.0.0.130",
"product_id": "CSAFPID-51004"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in DTM Collection HART-Multiplexer 2.0.1.208",
"product_id": "CSAFPID-52004"
}
}
],
"category": "product_name",
"name": "All contained DTMs in DTM Collection HART-Multiplexer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.0.31",
"product": {
"name": "All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57 \u003c=1.0.31",
"product_id": "CSAFPID-51005"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57 2.0.1.208",
"product_id": "CSAFPID-52005"
}
}
],
"category": "product_name",
"name": "All contained DTMs in DTM Collection Level Control Technology used with Level Radar LCR20, LTC50, LTC51, LRC57"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.0.2.4",
"product": {
"name": "All contained DTMs in DTM Collection WirelessHART \u003c=1.0.2.4",
"product_id": "CSAFPID-51006"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in DTM Collection WirelessHART 2.0.1.208",
"product_id": "CSAFPID-52006"
}
}
],
"category": "product_name",
"name": "All contained DTMs in DTM Collection WirelessHART"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.4.11.59",
"product": {
"name": "All contained DTMs in DTM Library HART used with 6500 Series \u003c=2.4.11.59",
"product_id": "CSAFPID-51007"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in DTM Library HART used with 6500 Series 2.0.1.208",
"product_id": "CSAFPID-52007"
}
}
],
"category": "product_name",
"name": "All contained DTMs in DTM Library HART used with 6500 Series"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.2.2.3478",
"product": {
"name": "All contained DTMs in FieldConnex Diagnostic Gateway FF DTM \u003c=2.2.2.3478",
"product_id": "CSAFPID-51008"
}
},
{
"category": "product_version",
"name": "2.2.3.3527",
"product": {
"name": "All contained DTMs in FieldConnex Diagnostic Gateway FF DTM 2.2.3.3527",
"product_id": "CSAFPID-52008"
}
}
],
"category": "product_name",
"name": "All contained DTMs in FieldConnex Diagnostic Gateway FF DTM"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.4.11.59",
"product": {
"name": "All contained DTMs in HART DTM Library Enhanced used with PS3500-DM \u003c=2.4.11.59",
"product_id": "CSAFPID-51009"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in HART DTM Library Enhanced used with PS3500-DM 2.0.1.208",
"product_id": "CSAFPID-52009"
}
}
],
"category": "product_name",
"name": "All contained DTMs in HART DTM Library Enhanced used with PS3500-DM"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.6.3.10",
"product": {
"name": "All contained DTMs in TMI-FF DTM \u003c=2.6.3.10",
"product_id": "CSAFPID-51010"
}
},
{
"category": "product_version",
"name": "2.0.1.208",
"product": {
"name": "All contained DTMs in TMI-FF DTM 2.0.1.208",
"product_id": "CSAFPID-52010"
}
}
],
"category": "product_name",
"name": "All contained DTMs in TMI-FF DTM"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.1.3.1463",
"product": {
"name": "AMS Alert Adapter in Emerson Integration Package \u003c=1.1.3.1463",
"product_id": "CSAFPID-51011"
}
},
{
"category": "product_version",
"name": "1.1.3.72",
"product": {
"name": "AMS Alert Adapter in Emerson Integration Package 1.1.3.72",
"product_id": "CSAFPID-52011"
}
}
],
"category": "product_name",
"name": "AMS Alert Adapter in Emerson Integration Package"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.0.1.1022",
"product": {
"name": "FDH-1 Manager \u003c=1.0.1.1022",
"product_id": "CSAFPID-51012"
}
},
{
"category": "product_version",
"name": "1.0.2.1049",
"product": {
"name": "FDH-1 Manager 1.0.2.1049",
"product_id": "CSAFPID-52012"
}
}
],
"category": "product_name",
"name": "FDH-1 Manager"
},
{
"branches": [
{
"category": "product_version",
"name": "V2.3.68",
"product": {
"name": "P+F DTMLibrary Modbus in DTM used with S1SD-1TI-1U V2.3.68",
"product_id": "CSAFPID-51013"
}
}
],
"category": "product_name",
"name": "P+F DTMLibrary Modbus in DTM used with S1SD-1TI-1U"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=4.7.1",
"product": {
"name": "VisuNet Control Center \u003c=4.7.1",
"product_id": "CSAFPID-51014"
}
},
{
"category": "product_version",
"name": "4.8.0.1596",
"product": {
"name": "VisuNet Control Center 4.8.0.1596",
"product_id": "CSAFPID-52013"
}
}
],
"category": "product_name",
"name": "VisuNet Control Center"
},
{
"branches": [
{
"category": "product_version",
"name": "5.x",
"product": {
"name": "VisuNet Factory Reset 5.x",
"product_id": "CSAFPID-51015"
}
},
{
"category": "product_version",
"name": "6.1.1.262",
"product": {
"name": "VisuNet Factory Reset 6.1.1.262",
"product_id": "CSAFPID-52014"
}
}
],
"category": "product_name",
"name": "VisuNet Factory Reset"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=6.1.0",
"product": {
"name": "VisuNet Factory Reset \u003c=6.1.0",
"product_id": "CSAFPID-51016"
}
},
{
"category": "product_version",
"name": "6.1.1.262",
"product": {
"name": "VisuNet Factory Reset 6.1.1.262",
"product_id": "CSAFPID-52015"
}
}
],
"category": "product_name",
"name": "VisuNet Factory Reset"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.1.0",
"product": {
"name": "VisuNet GXP PC Service Tool \u003c=1.1.0",
"product_id": "CSAFPID-51017"
}
},
{
"category": "product_version",
"name": "1.1.1",
"product": {
"name": "VisuNet GXP PC Service Tool 1.1.1",
"product_id": "CSAFPID-52016"
}
}
],
"category": "product_name",
"name": "VisuNet GXP PC Service Tool"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=5.5.0",
"product": {
"name": "VisuNet RM Shell \u003c=5.5.0",
"product_id": "CSAFPID-51018"
}
},
{
"category": "product_version",
"name": "5.5.1.1200",
"product": {
"name": "VisuNet RM Shell 5.5.1.1200",
"product_id": "CSAFPID-52017"
}
},
{
"category": "product_version",
"name": "5.6.0.1383",
"product": {
"name": "VisuNet RM Shell 5.6.0.1383",
"product_id": "CSAFPID-52018"
}
}
],
"category": "product_name",
"name": "VisuNet RM Shell"
}
],
"category": "product_family",
"name": "Software"
}
],
"category": "vendor",
"name": "Pepperl+Fuchs"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006",
"CSAFPID-51007",
"CSAFPID-51008",
"CSAFPID-51009",
"CSAFPID-51010",
"CSAFPID-51011",
"CSAFPID-51012",
"CSAFPID-51013",
"CSAFPID-51014",
"CSAFPID-51015",
"CSAFPID-51016",
"CSAFPID-51017",
"CSAFPID-51018"
],
"summary": "Affected Products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005",
"CSAFPID-52006",
"CSAFPID-52007",
"CSAFPID-52008",
"CSAFPID-52009",
"CSAFPID-52010",
"CSAFPID-52011",
"CSAFPID-52012",
"CSAFPID-52013",
"CSAFPID-52014",
"CSAFPID-52015",
"CSAFPID-52016",
"CSAFPID-52017",
"CSAFPID-52018"
],
"summary": "Fixed Products."
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1285",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "description",
"text": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005",
"CSAFPID-52006",
"CSAFPID-52007",
"CSAFPID-52008",
"CSAFPID-52009",
"CSAFPID-52010",
"CSAFPID-52011",
"CSAFPID-52012",
"CSAFPID-52013",
"CSAFPID-52014",
"CSAFPID-52015",
"CSAFPID-52016",
"CSAFPID-52017",
"CSAFPID-52018"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006",
"CSAFPID-51007",
"CSAFPID-51008",
"CSAFPID-51009",
"CSAFPID-51010",
"CSAFPID-51011",
"CSAFPID-51012",
"CSAFPID-51013",
"CSAFPID-51014",
"CSAFPID-51015",
"CSAFPID-51016",
"CSAFPID-51017",
"CSAFPID-51018"
]
},
"remediations": [
{
"category": "mitigation",
"details": "External countermeasures are needed for the remaining products.\nThe following protective measure is required for VisuNet devices and the PCs/Servers with an installed DTM:\n\nRestrict local access to the device, PC/Server and use user authentication to prevent unauthorized access.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "The following affected DTM products can be updated to the listed version:\n\n| Item | Version |\n|--------------------------------------------|----------------|\n| FieldConnex DTM Collection | 1.7.1.2159 |\n| Diagnostic Manager | 2.2.3.3527 |\n| FieldConnex Diagnostic Gateway FF DTM | 2.2.3.3527 |\n| FDH-1 Manager | 1.0.2.1049 |\n| ABB Project Builder | 1.1.2.1134 |\n| Honeywell Integration Package | 1.1.3.0 |\n| Emerson Integration Package [ADM Project Builder Emerson] | 1.1.4.1474 |\n| Emerson Integration Package [AMS Alert Adapter] | 1.1.3.72 |\n| DTM Collection HART-Multiplexer | 2.0.1.208 |\n\nUPDATE A\n\nThe following affected VisuNet products can be updated to the listed version:\n\n| Item | Version |\n|------------------------------------------|---------------|\n| VisuNet RM Shell 5 (2016 LTSB) | 5.5.1.1200 |\n| VisuNet RM Shell 5 (2019 LTSC) | 5.6.0.1383 |\n| VisuNet Factory Reset | 6.1.1.262 |\n| VisuNet Control Center | 4.8.0.1596 |\n| VisuNet GXP PC Service Tool | 1.1.1 |\n\nEND UPDATE A",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006",
"CSAFPID-51007",
"CSAFPID-51008",
"CSAFPID-51009",
"CSAFPID-51010",
"CSAFPID-51011",
"CSAFPID-51012",
"CSAFPID-51013",
"CSAFPID-51014",
"CSAFPID-51015",
"CSAFPID-51016",
"CSAFPID-51017",
"CSAFPID-51018"
]
}
],
"title": "CVE-2018-1285"
}
]
}
VDE-2024-004
Vulnerability from csaf_trumpfsecokg - Published: 2025-04-22 10:00 - Updated: 2025-05-22 13:03Summary
TRUMPF: Multiple products affected by log4net vulnerability
Severity
Critical
Notes
Summary: The versions of TRUMPF products stated below are including a version of log4net that's prone to XXE
(External XML Entities) attacks under certain circumstances. This means, the log4net code can be tricked
into loading externally hosted, potentially malicious XML code and possibly executing it. This vulnerability allows for the execution of remote XML code, possibly resulting in unauthorized (remote) access to, change of data or disruption of the whole system running the vulnerable application.
Impact: This vulnerability allows for the execution of remote XML code or interpretation of XML config files, possibly resulting in unauthorized (remote) access to, change of data or disruption of the whole system running the vulnerable application.
Disclaimer: This document is provided on an \"AS IS\" basis and does not imply any kind of guarantee or warranty, including the warranties of merchantability or fitness for a particular use. Your use of the information on the document or materials linked from the document is at your own risk. TRUMPF SE + Co. KG reserves the right to change or update this document at any time.
Remediation: New versions are available for the affected products. Install new versions as provided by TRUMPF SE + Co. KG. To aquire these versions please contact your TRUMPF Service with the PR number 500879.
9.8 (Critical)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
TruTops Boost 17.0.23
TRUMPF SE + Co. KG / Software / TruTops Boost
|
17.0.23 | ||
|
TruTops Fab (Storage) 22.8
TRUMPF SE + Co. KG / Software / TruTops Fab (Storage)
|
22.8 | ||
|
Oseon (Storage) 4.0.23
TRUMPF SE + Co. KG / Software / Oseon (Storage)
|
4.0.23 | ||
|
TruTops Classic 13.0
TRUMPF SE + Co. KG / Software / TruTops Classic
|
13.0 | ||
|
TruTops Cell 2.54.24
TRUMPF SE + Co. KG / Software / TruTops Cell
|
2.54.24 | ||
|
TruTops Mark 6.3
TRUMPF SE + Co. KG / Software / TruTops Mark
|
6.3 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
TruTops Boost <=16.0.24
TRUMPF SE + Co. KG / Software / TruTops Boost
|
<=16.0.24 |
Vendor Fix
|
|
|
TruTops Fab (Storage) <=22.7
TRUMPF SE + Co. KG / Software / TruTops Fab (Storage)
|
<=22.7 |
Vendor Fix
|
|
|
Oseon (Storage) <=3.0.24
TRUMPF SE + Co. KG / Software / Oseon (Storage)
|
<=3.0.24 |
Vendor Fix
|
|
|
TruTops Classic <=12.1
TRUMPF SE + Co. KG / Software / TruTops Classic
|
<=12.1 |
Vendor Fix
|
|
|
TruTops Cell <2.54.24
TRUMPF SE + Co. KG / Software / TruTops Cell
|
<2.54.24 |
Vendor Fix
|
|
|
TruTops Mark <=6.2
TRUMPF SE + Co. KG / Software / TruTops Mark
|
<=6.2 |
Vendor Fix
|
References
5 references
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"aggregate_severity": {
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "The versions of TRUMPF products stated below are including a version of log4net that\u0027s prone to XXE\n(External XML Entities) attacks under certain circumstances. This means, the log4net code can be tricked\ninto loading externally hosted, potentially malicious XML code and possibly executing it. This vulnerability allows for the execution of remote XML code, possibly resulting in unauthorized (remote) access to, change of data or disruption of the whole system running the vulnerable application.",
"title": "Summary"
},
{
"category": "description",
"text": "This vulnerability allows for the execution of remote XML code or interpretation of XML config files, possibly resulting in unauthorized (remote) access to, change of data or disruption of the whole system running the vulnerable application.",
"title": "Impact"
},
{
"category": "legal_disclaimer",
"text": "This document is provided on an \\\"AS IS\\\" basis and does not imply any kind of guarantee or warranty, including the warranties of merchantability or fitness for a particular use. Your use of the information on the document or materials linked from the document is at your own risk. TRUMPF SE + Co. KG reserves the right to change or update this document at any time.",
"title": "Disclaimer"
},
{
"category": "description",
"text": "New versions are available for the affected products. Install new versions as provided by TRUMPF SE + Co. KG. To aquire these versions please contact your TRUMPF Service with the PR number 500879.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "product.security@trumpf.com",
"name": "Trumpf SE + Co. KG",
"namespace": "https://www.trumpf.com"
},
"references": [
{
"category": "external",
"summary": "Messages to TRUMPF PSIRT",
"url": "https://www.trumpf.com/en_GB/meta/security-with-trumpf/message-to-psirt/"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for TRUMPF SE + Co. KG",
"url": "https://certvde.com/en/advisories/vendor/trumpf/"
},
{
"category": "self",
"summary": "VDE-2024-004: TRUMPF: Multiple products affected by log4net vulnerability - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-004"
},
{
"category": "self",
"summary": "VDE-2024-004: TRUMPF: Multiple products affected by log4net vulnerability - CSAF",
"url": "https://trumpf.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2024-004.json"
},
{
"category": "external",
"summary": "CVE-2018-1285 - NVD",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1285"
}
],
"title": "TRUMPF: Multiple products affected by log4net vulnerability",
"tracking": {
"aliases": [
"VDE-2024-004"
],
"current_release_date": "2025-05-22T13:03:10.000Z",
"generator": {
"date": "2025-04-16T08:58:29.987Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.18"
}
},
"id": "VDE-2024-004",
"initial_release_date": "2025-04-22T10:00:00.000Z",
"revision_history": [
{
"date": "2025-04-22T10:00:00.000Z",
"number": "1.0.0",
"summary": "Initial version"
},
{
"date": "2025-05-22T13:03:10.000Z",
"number": "1.0.1",
"summary": "Fix: added distribution, quotation mark"
}
],
"status": "final",
"version": "1.0.1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=16.0.24",
"product": {
"name": "TruTops Boost \u003c=16.0.24",
"product_id": "CSAFPID-00001"
}
},
{
"category": "product_version",
"name": "17.0.23",
"product": {
"name": "TruTops Boost 17.0.23",
"product_id": "CSAFPID-00002"
}
}
],
"category": "product_name",
"name": "TruTops Boost"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=22.7",
"product": {
"name": "TruTops Fab (Storage) \u003c=22.7",
"product_id": "CSAFPID-01001"
}
},
{
"category": "product_version",
"name": "22.8",
"product": {
"name": "TruTops Fab (Storage) 22.8",
"product_id": "CSAFPID-01002"
}
}
],
"category": "product_name",
"name": "TruTops Fab (Storage)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=3.0.24",
"product": {
"name": "Oseon (Storage) \u003c=3.0.24",
"product_id": "CSAFPID-02001"
}
},
{
"category": "product_version",
"name": "4.0.23",
"product": {
"name": "Oseon (Storage) 4.0.23",
"product_id": "CSAFPID-02002"
}
}
],
"category": "product_name",
"name": "Oseon (Storage)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=12.1",
"product": {
"name": "TruTops Classic \u003c=12.1",
"product_id": "CSAFPID-03001"
}
},
{
"category": "product_version",
"name": "13.0",
"product": {
"name": "TruTops Classic 13.0",
"product_id": "CSAFPID-03002"
}
}
],
"category": "product_name",
"name": "TruTops Classic"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2.54.24",
"product": {
"name": "TruTops Cell \u003c2.54.24",
"product_id": "CSAFPID-04001"
}
},
{
"category": "product_version",
"name": "2.54.24",
"product": {
"name": "TruTops Cell 2.54.24",
"product_id": "CSAFPID-04002"
}
}
],
"category": "product_name",
"name": "TruTops Cell"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=6.2",
"product": {
"name": "TruTops Mark \u003c=6.2",
"product_id": "CSAFPID-05001"
}
},
{
"category": "product_version",
"name": "6.3",
"product": {
"name": "TruTops Mark 6.3",
"product_id": "CSAFPID-05002"
}
}
],
"category": "product_name",
"name": "TruTops Mark"
}
],
"category": "product_family",
"name": "Software"
}
],
"category": "vendor",
"name": "TRUMPF SE + Co. KG"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1285",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"audience": "all",
"category": "summary",
"text": "Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"fixed": [
"CSAFPID-00002",
"CSAFPID-01002",
"CSAFPID-02002",
"CSAFPID-03002",
"CSAFPID-04002",
"CSAFPID-05002"
],
"known_affected": [
"CSAFPID-00001",
"CSAFPID-01001",
"CSAFPID-02001",
"CSAFPID-03001",
"CSAFPID-04001",
"CSAFPID-05001"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2025-03-17T11:00:00.000Z",
"details": "New versions are available for the affected products. Install new versions as provided by TRUMPF SE + Co. KG. To aquire these versions please contact your TRUMPF Service with the PR number 500879.",
"product_ids": [
"CSAFPID-00001",
"CSAFPID-01001",
"CSAFPID-02001",
"CSAFPID-03001",
"CSAFPID-04001",
"CSAFPID-05001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-00001",
"CSAFPID-01001",
"CSAFPID-02001",
"CSAFPID-03001",
"CSAFPID-04001",
"CSAFPID-05001"
]
}
],
"title": "CVE-2018-1285"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…