cvelistv5 - CVE-2023-50442

CVE-2023-50442 (GCVE-0-2023-50442)

Vulnerability from cvelistv5 – Published: 2023-12-13 00:00 – Updated: 2024-08-02 22:16

Summary

Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://www.primx.eu/fr/blog/
	https://www.primx.eu/en/bulletins/security-bullet…

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T22:16:46.664Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.primx.eu/fr/blog/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-12-13T20:32:41.286847",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://www.primx.eu/fr/blog/"
        },
        {
          "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2023-50442",
    "datePublished": "2023-12-13T00:00:00",
    "dateReserved": "2023-12-10T00:00:00",
    "dateUpdated": "2024-08-02T22:16:46.664Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:primx:zonecentral:*:*:*:*:*:windows:*:*\", \"versionEndIncluding\": \"2023.5\", \"matchCriteriaId\": \"70D83FB5-F2D7-43E1-9EA9-6AC0B3023EEC\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)\"}, {\"lang\": \"es\", \"value\": \"Un atacante local (con los privilegios adecuados) puede modificar las carpetas cifradas creadas por PRIMX ZONECENTRAL hasta 2023.5 para que tipos de archivos espec\\u00edficos queden excluidos del cifrado temporalmente. (Sin embargo, esta modificaci\\u00f3n se puede detectar, como se describe en la Gu\\u00eda del administrador).\"}]",
      "id": "CVE-2023-50442",
      "lastModified": "2024-11-21T08:37:00.110",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}]}",
      "published": "2023-12-13T21:15:09.653",
      "references": "[{\"url\": \"https://www.primx.eu/en/bulletins/security-bulletin-23B30933/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.primx.eu/fr/blog/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Product\"]}, {\"url\": \"https://www.primx.eu/en/bulletins/security-bulletin-23B30933/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.primx.eu/fr/blog/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Product\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-50442\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2023-12-13T21:15:09.653\",\"lastModified\":\"2024-11-21T08:37:00.110\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)\"},{\"lang\":\"es\",\"value\":\"Un atacante local (con los privilegios adecuados) puede modificar las carpetas cifradas creadas por PRIMX ZONECENTRAL hasta 2023.5 para que tipos de archivos espec\u00edficos queden excluidos del cifrado temporalmente. (Sin embargo, esta modificaci\u00f3n se puede detectar, como se describe en la Gu\u00eda del administrador).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:primx:zonecentral:*:*:*:*:*:windows:*:*\",\"versionEndIncluding\":\"2023.5\",\"matchCriteriaId\":\"70D83FB5-F2D7-43E1-9EA9-6AC0B3023EEC\"}]}]}],\"references\":[{\"url\":\"https://www.primx.eu/en/bulletins/security-bulletin-23B30933/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.primx.eu/fr/blog/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://www.primx.eu/en/bulletins/security-bulletin-23B30933/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.primx.eu/fr/blog/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]}]}}"
  }
}

CERTFR-2023-AVI-1021

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits PRIM'X. Certaines d'entre elles permettent à un attaquant de provoquer un contournement de la politique de sécurité, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.

La très forte réactivité de l'éditeur a permis de corriger ces vulnérabilités et publier des correctifs dans un délai de 3 mois.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

IMPORTANT : Déployer les nouvelles versions des logiciels n'est pas suffisant, il est également nécessaire de prendre les mesures suivantes :

créer de nouveaux conteneurs Zed! et ne pas réutiliser les anciens ;
appliquer une politique de mot de passe forte pour les mots de passe utilisateurs (si la liste d'accès est protégée par mot de passe) ;
contrôler les droits d'accès aux fichiers de zone utilisés par ZoneCentral enfin d'en limiter les droits d'écriture aux seuls administrateurs ZoneCentral.

None

Impacted products

Vendor	Product	Description
PrimX	CRYHOD	CRYHOD versions antérieures à 2023.5 pour Windows
PrimX	ZEDMAIL	ZED! features dans ZEDMAIL versions antérieures à 2023.5 pour Windows
Apple	macOS	ZEDFREE versions antérieures à 2023.5 pour Windows, macOS et Linux
Apple	macOS	ZED! Enterprise versions antérieures à 2023.5 pour Windows, macOS et Linux
Apple	macOS	ZEDPRO versions antérieures à 2023.5 pour Windows, macOS et Linux
PrimX	ZONECENTRAL	ZED! features dans ZONECENTRAL versions antérieures à 2023.5 pour Windows (à l'exception de la vulnérabilité CVE-2023-50442 qui affecte toutes les versions)

References

Title

Publication Time

Tags

Bulletin de sécurité PRIM'X 23b30874 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30930 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b3093a du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30933 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b3093b du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30931 du 13 décembre 2023	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CRYHOD versions ant\u00e9rieures \u00e0 2023.5 pour Windows",
      "product": {
        "name": "CRYHOD",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! features dans ZEDMAIL versions ant\u00e9rieures \u00e0 2023.5 pour Windows",
      "product": {
        "name": "ZEDMAIL",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    },
    {
      "description": "ZEDFREE versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! Enterprise versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZEDPRO versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! features dans ZONECENTRAL versions ant\u00e9rieures \u00e0 2023.5 pour Windows (\u00e0 l\u0027exception de la vuln\u00e9rabilit\u00e9 CVE-2023-50442 qui affecte toutes les versions)",
      "product": {
        "name": "ZONECENTRAL",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n\n**\u003cspan style=\"color: #ff0000;\"\u003eIMPORTANT :\u003c/span\u003e** D\u00e9ployer les\nnouvelles versions des logiciels n\u0027est pas suffisant, il est \u00e9galement\nn\u00e9cessaire de prendre les mesures suivantes :\n\n-   cr\u00e9er de nouveaux conteneurs Zed! et ne pas r\u00e9utiliser les anciens ;\n-   appliquer une politique de mot de passe forte pour les mots de passe\n    utilisateurs (si la liste d\u0027acc\u00e8s est prot\u00e9g\u00e9e par mot de passe) ;\n-   contr\u00f4ler les droits d\u0027acc\u00e8s aux fichiers de zone utilis\u00e9s par\n    ZoneCentral enfin d\u0027en limiter les droits d\u0027\u00e9criture aux seuls\n    administrateurs ZoneCentral.\n\n\u00a0\n",
  "cves": [
    {
      "name": "CVE-2023-50441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50441"
    },
    {
      "name": "CVE-2023-50442",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50442"
    },
    {
      "name": "CVE-2023-50444",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50444"
    },
    {
      "name": "CVE-2023-50439",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50439"
    },
    {
      "name": "CVE-2023-50440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50440"
    },
    {
      "name": "CVE-2023-50443",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50443"
    }
  ],
  "links": [],
  "reference": "CERTFR-2023-AVI-1021",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-12-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nPRIM\u0027X. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun contournement de la politique de s\u00e9curit\u00e9, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nLa tr\u00e8s forte r\u00e9activit\u00e9 de l\u0027\u00e9diteur a permis de corriger ces\nvuln\u00e9rabilit\u00e9s et publier des correctifs dans un d\u00e9lai de 3 mois.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits PRIM\u0027X",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30874 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30874/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30930 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30930/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b3093a du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b3093a/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30933 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30933/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b3093b du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b3093b/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30931 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30931/"
    }
  ]
}

CERTFR-2023-AVI-1021

Vulnerability from certfr_avis - Published: - Updated:

La très forte réactivité de l'éditeur a permis de corriger ces vulnérabilités et publier des correctifs dans un délai de 3 mois.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

IMPORTANT : Déployer les nouvelles versions des logiciels n'est pas suffisant, il est également nécessaire de prendre les mesures suivantes :

créer de nouveaux conteneurs Zed! et ne pas réutiliser les anciens ;
appliquer une politique de mot de passe forte pour les mots de passe utilisateurs (si la liste d'accès est protégée par mot de passe) ;
contrôler les droits d'accès aux fichiers de zone utilisés par ZoneCentral enfin d'en limiter les droits d'écriture aux seuls administrateurs ZoneCentral.

None

Impacted products

Vendor	Product	Description
PrimX	CRYHOD	CRYHOD versions antérieures à 2023.5 pour Windows
PrimX	ZEDMAIL	ZED! features dans ZEDMAIL versions antérieures à 2023.5 pour Windows
Apple	macOS	ZEDFREE versions antérieures à 2023.5 pour Windows, macOS et Linux
Apple	macOS	ZED! Enterprise versions antérieures à 2023.5 pour Windows, macOS et Linux
Apple	macOS	ZEDPRO versions antérieures à 2023.5 pour Windows, macOS et Linux
PrimX	ZONECENTRAL	ZED! features dans ZONECENTRAL versions antérieures à 2023.5 pour Windows (à l'exception de la vulnérabilité CVE-2023-50442 qui affecte toutes les versions)

References

Title

Publication Time

Tags

Bulletin de sécurité PRIM'X 23b30874 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30930 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b3093a du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30933 du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b3093b du 13 décembre 2023	None	vendor-advisory
Bulletin de sécurité PRIM'X 23b30931 du 13 décembre 2023	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CRYHOD versions ant\u00e9rieures \u00e0 2023.5 pour Windows",
      "product": {
        "name": "CRYHOD",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! features dans ZEDMAIL versions ant\u00e9rieures \u00e0 2023.5 pour Windows",
      "product": {
        "name": "ZEDMAIL",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    },
    {
      "description": "ZEDFREE versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! Enterprise versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZEDPRO versions ant\u00e9rieures \u00e0 2023.5 pour Windows, macOS et Linux",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "ZED! features dans ZONECENTRAL versions ant\u00e9rieures \u00e0 2023.5 pour Windows (\u00e0 l\u0027exception de la vuln\u00e9rabilit\u00e9 CVE-2023-50442 qui affecte toutes les versions)",
      "product": {
        "name": "ZONECENTRAL",
        "vendor": {
          "name": "PrimX",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n\n**\u003cspan style=\"color: #ff0000;\"\u003eIMPORTANT :\u003c/span\u003e** D\u00e9ployer les\nnouvelles versions des logiciels n\u0027est pas suffisant, il est \u00e9galement\nn\u00e9cessaire de prendre les mesures suivantes :\n\n-   cr\u00e9er de nouveaux conteneurs Zed! et ne pas r\u00e9utiliser les anciens ;\n-   appliquer une politique de mot de passe forte pour les mots de passe\n    utilisateurs (si la liste d\u0027acc\u00e8s est prot\u00e9g\u00e9e par mot de passe) ;\n-   contr\u00f4ler les droits d\u0027acc\u00e8s aux fichiers de zone utilis\u00e9s par\n    ZoneCentral enfin d\u0027en limiter les droits d\u0027\u00e9criture aux seuls\n    administrateurs ZoneCentral.\n\n\u00a0\n",
  "cves": [
    {
      "name": "CVE-2023-50441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50441"
    },
    {
      "name": "CVE-2023-50442",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50442"
    },
    {
      "name": "CVE-2023-50444",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50444"
    },
    {
      "name": "CVE-2023-50439",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50439"
    },
    {
      "name": "CVE-2023-50440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50440"
    },
    {
      "name": "CVE-2023-50443",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50443"
    }
  ],
  "links": [],
  "reference": "CERTFR-2023-AVI-1021",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-12-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nPRIM\u0027X. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun contournement de la politique de s\u00e9curit\u00e9, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nLa tr\u00e8s forte r\u00e9activit\u00e9 de l\u0027\u00e9diteur a permis de corriger ces\nvuln\u00e9rabilit\u00e9s et publier des correctifs dans un d\u00e9lai de 3 mois.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits PRIM\u0027X",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30874 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30874/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30930 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30930/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b3093a du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b3093a/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30933 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30933/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b3093b du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b3093b/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 PRIM\u0027X 23b30931 du 13 d\u00e9cembre 2023",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23b30931/"
    }
  ]
}

GHSA-X9C6-VMCF-QHXR

Vulnerability from github – Published: 2023-12-13 21:30 – Updated: 2023-12-20 18:30

Details

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-50442"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-12-13T21:15:09Z",
    "severity": "MODERATE"
  },
  "details": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)",
  "id": "GHSA-x9c6-vmcf-qhxr",
  "modified": "2023-12-20T18:30:31Z",
  "published": "2023-12-13T21:30:32Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50442"
    },
    {
      "type": "WEB",
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933"
    },
    {
      "type": "WEB",
      "url": "https://www.primx.eu/fr/blog"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-50442

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2023-50442

Aliases

CVE-2023-50442

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-50442",
    "id": "GSD-2023-50442"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-50442"
      ],
      "details": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)",
      "id": "GSD-2023-50442",
      "modified": "2023-12-13T01:20:31.310423Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2023-50442",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.primx.eu/fr/blog/",
            "refsource": "MISC",
            "url": "https://www.primx.eu/fr/blog/"
          },
          {
            "name": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/",
            "refsource": "MISC",
            "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:primx:zonecentral:*:*:*:*:*:windows:*:*",
                    "matchCriteriaId": "70D83FB5-F2D7-43E1-9EA9-6AC0B3023EEC",
                    "versionEndIncluding": "2023.5",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)"
          },
          {
            "lang": "es",
            "value": "Un atacante local (con los privilegios adecuados) puede modificar las carpetas cifradas creadas por PRIMX ZONECENTRAL hasta 2023.5 para que tipos de archivos espec\u00edficos queden excluidos del cifrado temporalmente. (Sin embargo, esta modificaci\u00f3n se puede detectar, como se describe en la Gu\u00eda del administrador)."
          }
        ],
        "id": "CVE-2023-50442",
        "lastModified": "2023-12-20T18:29:15.687",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 3.6,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2023-12-13T21:15:09.653",
        "references": [
          {
            "source": "cve@mitre.org",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
          },
          {
            "source": "cve@mitre.org",
            "tags": [
              "Product"
            ],
            "url": "https://www.primx.eu/fr/blog/"
          }
        ],
        "sourceIdentifier": "cve@mitre.org",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

FKIE_CVE-2023-50442

Vulnerability from fkie_nvd - Published: 2023-12-13 21:15 - Updated: 2024-11-21 08:37

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Summary

References

URL	Tags
cve@mitre.org	https://www.primx.eu/en/bulletins/security-bulletin-23B30933/	Vendor Advisory
cve@mitre.org	https://www.primx.eu/fr/blog/	Product
af854a3a-2127-422b-91ae-364da2661108	https://www.primx.eu/en/bulletins/security-bulletin-23B30933/	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.primx.eu/fr/blog/	Product

Impacted products

	Vendor	Product	Version
	primx	zonecentral	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:primx:zonecentral:*:*:*:*:*:windows:*:*",
              "matchCriteriaId": "70D83FB5-F2D7-43E1-9EA9-6AC0B3023EEC",
              "versionEndIncluding": "2023.5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)"
    },
    {
      "lang": "es",
      "value": "Un atacante local (con los privilegios adecuados) puede modificar las carpetas cifradas creadas por PRIMX ZONECENTRAL hasta 2023.5 para que tipos de archivos espec\u00edficos queden excluidos del cifrado temporalmente. (Sin embargo, esta modificaci\u00f3n se puede detectar, como se describe en la Gu\u00eda del administrador)."
    }
  ],
  "id": "CVE-2023-50442",
  "lastModified": "2024-11-21T08:37:00.110",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-12-13T21:15:09.653",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Product"
      ],
      "url": "https://www.primx.eu/fr/blog/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.primx.eu/en/bulletins/security-bulletin-23B30933/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Product"
      ],
      "url": "https://www.primx.eu/fr/blog/"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-50442 (GCVE-0-2023-50442)

CERTFR-2023-AVI-1021

Solution

CERTFR-2023-AVI-1021

Solution

GHSA-X9C6-VMCF-QHXR

GSD-2023-50442

FKIE_CVE-2023-50442

Tags

Sightings

Nomenclature