cnvd - cnvd-2017-22813

CNVD-2017-22813

Vulnerability from cnvd - Published: 2017-08-25

Title

Philips' DoseWise Portal硬编码漏洞

Description

Philips' DoseWise Portal是一个基于网络的报告和辐射暴露的跟踪工具。 Philips' DoseWise Portal存在硬编码漏洞。攻击者利用此漏洞首先需要提高权限，以便攻击者访问包含硬编码凭据的Web应用程序后端系统文件。成功地利用可能允许远程攻击者获得访问的后端应用数据库，其中包含PHI。

Severity

高

Patch Name

Philips' DoseWise Portal硬编码漏洞的补丁

Patch Description

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01

Reference

https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01

Impacted products

Name
Philips DoseWise Portal >=1.1.7.333，<=2.1.1.3069

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-9656"
    }
  },
  "description": "Philips\u0027 DoseWise Portal\u662f\u4e00\u4e2a\u57fa\u4e8e\u7f51\u7edc\u7684\u62a5\u544a\u548c\u8f90\u5c04\u66b4\u9732\u7684\u8ddf\u8e2a\u5de5\u5177\u3002\r\n\r\nPhilips\u0027 DoseWise Portal\u5b58\u5728\u786c\u7f16\u7801\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u6b64\u6f0f\u6d1e\u9996\u5148\u9700\u8981\u63d0\u9ad8\u6743\u9650\uff0c\u4ee5\u4fbf\u653b\u51fb\u8005\u8bbf\u95ee\u5305\u542b\u786c\u7f16\u7801\u51ed\u636e\u7684Web\u5e94\u7528\u7a0b\u5e8f\u540e\u7aef\u7cfb\u7edf\u6587\u4ef6\u3002\u6210\u529f\u5730\u5229\u7528\u53ef\u80fd\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u83b7\u5f97\u8bbf\u95ee\u7684\u540e\u7aef\u5e94\u7528\u6570\u636e\u5e93\uff0c\u5176\u4e2d\u5305\u542bPHI\u3002",
  "discovererName": "unknwon",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-22813",
  "openTime": "2017-08-25",
  "patchDescription": "Philips\u0027 DoseWise Portal\u662f\u4e00\u4e2a\u57fa\u4e8e\u7f51\u7edc\u7684\u62a5\u544a\u548c\u8f90\u5c04\u66b4\u9732\u7684\u8ddf\u8e2a\u5de5\u5177\u3002\r\n\r\nPhilips\u0027 DoseWise Portal\u5b58\u5728\u786c\u7f16\u7801\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u5229\u7528\u6b64\u6f0f\u6d1e\u9996\u5148\u9700\u8981\u63d0\u9ad8\u6743\u9650\uff0c\u4ee5\u4fbf\u653b\u51fb\u8005\u8bbf\u95ee\u5305\u542b\u786c\u7f16\u7801\u51ed\u636e\u7684Web\u5e94\u7528\u7a0b\u5e8f\u540e\u7aef\u7cfb\u7edf\u6587\u4ef6\u3002\u6210\u529f\u5730\u5229\u7528\u53ef\u80fd\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u83b7\u5f97\u8bbf\u95ee\u7684\u540e\u7aef\u5e94\u7528\u6570\u636e\u5e93\uff0c\u5176\u4e2d\u5305\u542bPHI\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Philips\u0027 DoseWise Portal\u786c\u7f16\u7801\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Philips DoseWise Portal \u003e=1.1.7.333\uff0c\u003c=2.1.1.3069"
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01",
  "serverity": "\u9ad8",
  "submitTime": "2017-08-21",
  "title": "Philips\u0027 DoseWise Portal\u786c\u7f16\u7801\u6f0f\u6d1e"
}

CVE-2017-9656 (GCVE-0-2017-9656)

Vulnerability from cvelistv5 – Published: 2018-04-24 15:00 – Updated: 2024-09-17 00:06

Summary

The backend database of the Philips DoseWise Portal application versions 1.1.7.333 and 2.1.1.3069 uses hard-coded credentials for a database account with privileges that can affect confidentiality, integrity, and availability of the database. For an attacker to exploit this vulnerability, elevated privileges are first required for an attacker to access the web application backend system files that contain the hard-coded credentials. Successful exploitation may allow a remote attacker to gain access to the database of the DWP application, which contains PHI. CVSS v3 base score: 9.1, CVSS vector string: AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H.

Severity ?

No CVSS data available.

CWE

CWE-798 - Use of hard-coded credentials CWE-798

Assigner

icscert

References

URL

Tags

	http://www.securityfocus.com/bid/100471	vdb-entryx_refsource_BID
	https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01	x_refsource_MISC
	http://www.philips.com/productsecurity	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Philips	DoseWise Portal	Affected: 1.1.7.333 Affected: 2.1.1.3069

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T17:18:01.463Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "100471",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/100471"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.philips.com/productsecurity"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "DoseWise Portal",
          "vendor": "Philips",
          "versions": [
            {
              "status": "affected",
              "version": "1.1.7.333"
            },
            {
              "status": "affected",
              "version": "2.1.1.3069"
            }
          ]
        }
      ],
      "datePublic": "2017-08-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The backend database of the Philips DoseWise Portal application versions 1.1.7.333 and 2.1.1.3069 uses hard-coded credentials for a database account with privileges that can affect confidentiality, integrity, and availability of the database. For an attacker to exploit this vulnerability, elevated privileges are first required for an attacker to access the web application backend system files that contain the hard-coded credentials. Successful exploitation may allow a remote attacker to gain access to the database of the DWP application, which contains PHI. CVSS v3 base score: 9.1, CVSS vector string: AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-798",
              "description": "Use of hard-coded credentials CWE-798",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-04-25T09:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "name": "100471",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/100471"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.philips.com/productsecurity"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "DATE_PUBLIC": "2017-08-17T00:00:00",
          "ID": "CVE-2017-9656",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "DoseWise Portal",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.1.7.333"
                          },
                          {
                            "version_value": "2.1.1.3069"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Philips"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The backend database of the Philips DoseWise Portal application versions 1.1.7.333 and 2.1.1.3069 uses hard-coded credentials for a database account with privileges that can affect confidentiality, integrity, and availability of the database. For an attacker to exploit this vulnerability, elevated privileges are first required for an attacker to access the web application backend system files that contain the hard-coded credentials. Successful exploitation may allow a remote attacker to gain access to the database of the DWP application, which contains PHI. CVSS v3 base score: 9.1, CVSS vector string: AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Use of hard-coded credentials CWE-798"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "100471",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/100471"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-17-229-01"
            },
            {
              "name": "http://www.philips.com/productsecurity",
              "refsource": "CONFIRM",
              "url": "http://www.philips.com/productsecurity"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2017-9656",
    "datePublished": "2018-04-24T15:00:00Z",
    "dateReserved": "2017-06-14T00:00:00",
    "dateUpdated": "2024-09-17T00:06:52.060Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-22813

CVE-2017-9656 (GCVE-0-2017-9656)

Tags

Sightings

Nomenclature