cnvd - cnvd-2015-07173

CNVD-2015-07173

Vulnerability from cnvd - Published: 2015-11-03

Title

Infinite Automation Mango Automation文件上传漏洞

Description

Infinite Automation Mango Automation是美国Infinite Automation Systems公司的一套开源的基于Web的SCADA（数据采集与监视控制）、HMI和自动化软件。 Infinite Automation Mango Automation 2.5.x和2.6.0之前的 2.6.x版本 build 430，存在无限制的文件上传漏洞。允许已通过身份验证的远程用户通过上传的图像文件，执行任意JSP代码。

Severity

中

Formal description

目前没有详细的解决方案，请到厂商的主页下载： http://infiniteautomation.com

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02

Impacted products

Name
['Infinite Automation Systems, Inc. Mango Automation 2.5.5', 'Infinite Automation Systems, Inc. Mango Automation 2.6.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-7904"
    }
  },
  "description": "Infinite Automation Mango Automation\u662f\u7f8e\u56fdInfinite Automation Systems\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u57fa\u4e8eWeb\u7684SCADA\uff08\u6570\u636e\u91c7\u96c6\u4e0e\u76d1\u89c6\u63a7\u5236\uff09\u3001HMI\u548c\u81ea\u52a8\u5316\u8f6f\u4ef6\u3002\r\n\r\nInfinite Automation Mango Automation 2.5.x\u548c2.6.0\u4e4b\u524d\u7684 2.6.x\u7248\u672c build 430\uff0c\u5b58\u5728\u65e0\u9650\u5236\u7684\u6587\u4ef6\u4e0a\u4f20\u6f0f\u6d1e\u3002\u5141\u8bb8\u5df2\u901a\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u7528\u6237\u901a\u8fc7\u4e0a\u4f20\u7684\u56fe\u50cf\u6587\u4ef6\uff0c\u6267\u884c\u4efb\u610fJSP\u4ee3\u7801\u3002",
  "discovererName": "Steven Seeley of Source Incite and Gjoko Krstic of Zero Science Lab",
  "formalWay": "\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u89e3\u51b3\u65b9\u6848\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://infiniteautomation.com",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-07173",
  "openTime": "2015-11-03",
  "products": {
    "product": [
      "Infinite Automation Systems, Inc. Mango Automation 2.5.5",
      "Infinite Automation Systems, Inc. Mango Automation  2.6.0"
    ]
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02",
  "serverity": "\u4e2d",
  "submitTime": "2015-10-30",
  "title": "Infinite Automation Mango Automation\u6587\u4ef6\u4e0a\u4f20\u6f0f\u6d1e"
}

CVE-2015-7904 (GCVE-0-2015-7904)

Vulnerability from cvelistv5 – Published: 2015-10-28 10:00 – Updated: 2024-08-06 08:06

Summary

Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file.

Severity ?

No CVSS data available.

CWE

Assigner

icscert

References

URL

Tags

https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02

x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T08:06:30.851Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-10-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2015-10-28T04:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2015-7904",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-300-02"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2015-7904",
    "datePublished": "2015-10-28T10:00:00",
    "dateReserved": "2015-10-22T00:00:00",
    "dateUpdated": "2024-08-06T08:06:30.851Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2015-07173

CVE-2015-7904 (GCVE-0-2015-7904)

Tags

Sightings

Nomenclature