cnvd - cnvd-2017-22845

CNVD-2017-22845

Vulnerability from cnvd - Published: 2017-08-25

Title

Schneider Electric PowerSCADA Anywhere/Citect Anywhere跨站请求伪造漏洞

Description

PowerSCADA Anywhere是SCADA和电力监测软件。Citect是工业自动化操作及监控软件。 Schneider Electric PowerSCADA Anywhere 1.0及Citect Anywhere 1.0版本网关组件存在跨站请求伪造漏洞，攻击者可利用该漏洞执行CSRF攻击。

Severity

高

Patch Name

Schneider Electric PowerSCADA Anywhere/Citect Anywhere跨站请求伪造漏洞的补丁

Patch Description

PowerSCADA Anywhere是SCADA和电力监测软件。Citect是工业自动化操作及监控软件。 Schneider Electric PowerSCADA Anywhere 1.0及Citect Anywhere 1.0版本网关组件存在跨站请求伪造漏洞，攻击者可利用该漏洞执行CSRF攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：https://www.citect.schneider-electric.com/safety-and-security-notifications/36-security-notifications/9071-security-notification-citect-anywhere

Reference

https://nvd.nist.gov/vuln/detail/CVE-2017-7969 https://ics-cert.us-cert.gov/advisories/ICSA-17-201-01

Impacted products

Name
['Schneider Electric Citect Anywhere 1.0', 'Schneider Electric PowerSCADA Anywhere 1.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-7969",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7969"
    }
  },
  "description": "PowerSCADA Anywhere\u662fSCADA\u548c\u7535\u529b\u76d1\u6d4b\u8f6f\u4ef6\u3002Citect\u662f\u5de5\u4e1a\u81ea\u52a8\u5316\u64cd\u4f5c\u53ca\u76d1\u63a7\u8f6f\u4ef6\u3002\r\n\r\nSchneider Electric PowerSCADA Anywhere 1.0\u53caCitect Anywhere 1.0\u7248\u672c\u7f51\u5173\u7ec4\u4ef6\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884cCSRF\u653b\u51fb\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1ahttps://www.citect.schneider-electric.com/safety-and-security-notifications/36-security-notifications/9071-security-notification-citect-anywhere",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-22845",
  "openTime": "2017-08-25",
  "patchDescription": "PowerSCADA Anywhere\u662fSCADA\u548c\u7535\u529b\u76d1\u6d4b\u8f6f\u4ef6\u3002Citect\u662f\u5de5\u4e1a\u81ea\u52a8\u5316\u64cd\u4f5c\u53ca\u76d1\u63a7\u8f6f\u4ef6\u3002\r\n\r\nSchneider Electric PowerSCADA Anywhere 1.0\u53caCitect Anywhere 1.0\u7248\u672c\u7f51\u5173\u7ec4\u4ef6\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884cCSRF\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Schneider Electric PowerSCADA Anywhere/Citect Anywhere\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Schneider Electric Citect Anywhere 1.0",
      "Schneider Electric PowerSCADA Anywhere 1.0"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-7969\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-17-201-01",
  "serverity": "\u9ad8",
  "submitTime": "2017-07-24",
  "title": "Schneider Electric PowerSCADA Anywhere/Citect Anywhere\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e"
}

CVE-2017-7969 (GCVE-0-2017-7969)

Vulnerability from cvelistv5 – Published: 2017-09-25 19:00 – Updated: 2024-09-17 01:30

Summary

A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack.

Severity ?

No CVSS data available.

CWE

Cross Site Request Forgery

Assigner

schneider

References

URL

Tags

	http://www.securityfocus.com/bid/99913	vdb-entryx_refsource_BID
	https://www.citect.schneider-electric.com/safety-…	x_refsource_CONFIRM
	http://www.schneider-electric.com/en/download/doc…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Schneider Electric SE

PowerSCADA Anywhere

Affected: Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2

Schneider Electric SE

Citect Anywhere

Affected: version 1.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T16:19:29.450Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "99913",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99913"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PowerSCADA Anywhere",
          "vendor": "Schneider Electric SE",
          "versions": [
            {
              "status": "affected",
              "version": "Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2"
            }
          ]
        },
        {
          "product": "Citect Anywhere",
          "vendor": "Schneider Electric SE",
          "versions": [
            {
              "status": "affected",
              "version": "version 1.0"
            }
          ]
        }
      ],
      "datePublic": "2017-06-22T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Cross Site Request Forgery",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-26T09:57:01",
        "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
        "shortName": "schneider"
      },
      "references": [
        {
          "name": "99913",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99913"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cybersecurity@schneider-electric.com",
          "DATE_PUBLIC": "2017-06-22T00:00:00",
          "ID": "CVE-2017-7969",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "PowerSCADA Anywhere",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Version 1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Citect Anywhere",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "version 1.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Schneider Electric SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Cross Site Request Forgery"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "99913",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99913"
            },
            {
              "name": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere",
              "refsource": "CONFIRM",
              "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
            },
            {
              "name": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/",
              "refsource": "CONFIRM",
              "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
    "assignerShortName": "schneider",
    "cveId": "CVE-2017-7969",
    "datePublished": "2017-09-25T19:00:00Z",
    "dateReserved": "2017-04-19T00:00:00",
    "dateUpdated": "2024-09-17T01:30:49.504Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-22845

CVE-2017-7969 (GCVE-0-2017-7969)

Tags

Sightings

Nomenclature