CVE-2021-41293 (GCVE-0-2021-41293)
Vulnerability from cvelistv5 – Published: 2021-09-30 10:40 – Updated: 2024-09-16 19:41
VLAI?
Summary
ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information.
Severity ?
7.5 (High)
CWE
- CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ECOA | ECS Router Controller ECS (FLASH) |
Unknown:
next of 0 , < unspecified
(custom)
|
||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T03:08:31.883Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "ECS Router Controller ECS (FLASH)",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "RiskBuster Terminator E6L45",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "RiskBuster System RB 3.0.0",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "RiskBuster System TRANE 1.0",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "Graphic Control Software",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "SmartHome II E9246",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
},
{
"product": "RiskTerminator",
"vendor": "ECOA",
"versions": [
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 0",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-09-30T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-30T10:40:54",
"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
"shortName": "twcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html"
}
],
"solutions": [
{
"lang": "en",
"value": "Contact tech support from ECOA."
}
],
"source": {
"advisory": "TVN-202109009",
"discovery": "EXTERNAL"
},
"title": "ECOA BAS controller - Path Traversal-3",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"AKA": "TWCERT/CC",
"ASSIGNER": "cve@cert.org.tw",
"DATE_PUBLIC": "2021-09-30T10:13:00.000Z",
"ID": "CVE-2021-41293",
"STATE": "PUBLIC",
"TITLE": "ECOA BAS controller - Path Traversal-3"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "ECS Router Controller ECS (FLASH)",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "RiskBuster Terminator E6L45",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "RiskBuster System RB 3.0.0",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "RiskBuster System TRANE 1.0",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "Graphic Control Software",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "SmartHome II E9246",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
},
{
"product_name": "RiskTerminator",
"version": {
"version_data": [
{
"version_affected": "?\u003e",
"version_value": "0"
}
]
}
}
]
},
"vendor_name": "ECOA"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html",
"refsource": "MISC",
"url": "https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html"
}
]
},
"solution": [
{
"lang": "en",
"value": "Contact tech support from ECOA."
}
],
"source": {
"advisory": "TVN-202109009",
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
"assignerShortName": "twcert",
"cveId": "CVE-2021-41293",
"datePublished": "2021-09-30T10:40:54.205787Z",
"dateReserved": "2021-09-15T00:00:00",
"dateUpdated": "2024-09-16T19:41:34.779Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:ecoa:ecs_router_controller-ecs_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E80292D1-E3AD-42B6-A63E-3546010B97A3\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:ecoa:ecs_router_controller-ecs:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"541B6C82-F00E-4BFC-9947-A55B2F4EDD06\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:ecoa:riskbuster_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19A28430-AB2B-423F-82D4-FC0E3A6DF335\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:ecoa:riskbuster:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58A6F2A4-A7DA-4A88-B572-917FFC80ADC1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ecoa:riskterminator:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"841DF575-8E63-4AB4-A6F9-77C28FC65BCE\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information.\"}, {\"lang\": \"es\", \"value\": \"El controlador ECOA BAS sufre una vulnerabilidad de salto de ruta, causando la divulgaci\\u00f3n de archivos arbitrarios. usando el par\\u00e1metro POST espec\\u00edfico, unos atacantes no autenticados pueden divulgar remotamente archivos arbitrarios en el dispositivo afectado y divulgar informaci\\u00f3n confidencial y del sistema\"}]",
"id": "CVE-2021-41293",
"lastModified": "2024-11-21T06:25:58.907",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"twcert@cert.org.tw\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2021-09-30T11:15:07.540",
"references": "[{\"url\": \"https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html\", \"source\": \"twcert@cert.org.tw\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "twcert@cert.org.tw",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"twcert@cert.org.tw\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-22\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-41293\",\"sourceIdentifier\":\"twcert@cert.org.tw\",\"published\":\"2021-09-30T11:15:07.540\",\"lastModified\":\"2024-11-21T06:25:58.907\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information.\"},{\"lang\":\"es\",\"value\":\"El controlador ECOA BAS sufre una vulnerabilidad de salto de ruta, causando la divulgaci\u00f3n de archivos arbitrarios. usando el par\u00e1metro POST espec\u00edfico, unos atacantes no autenticados pueden divulgar remotamente archivos arbitrarios en el dispositivo afectado y divulgar informaci\u00f3n confidencial y del sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"twcert@cert.org.tw\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"twcert@cert.org.tw\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ecoa:ecs_router_controller-ecs_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E80292D1-E3AD-42B6-A63E-3546010B97A3\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ecoa:ecs_router_controller-ecs:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"541B6C82-F00E-4BFC-9947-A55B2F4EDD06\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ecoa:riskbuster_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19A28430-AB2B-423F-82D4-FC0E3A6DF335\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ecoa:riskbuster:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A6F2A4-A7DA-4A88-B572-917FFC80ADC1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ecoa:riskterminator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"841DF575-8E63-4AB4-A6F9-77C28FC65BCE\"}]}]}],\"references\":[{\"url\":\"https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html\",\"source\":\"twcert@cert.org.tw\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.twcert.org.tw/tw/cp-132-5129-7e623-1.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…