cnvd - cnvd-2017-26426

CNVD-2017-26426

Vulnerability from cnvd - Published: 2017-09-13

Title

mySCADA myPRO权限提升漏洞

Description

myPRO是一个HMI/SCADA系统，主要用于工业过程的可视化和控制。 mySCADA myPRO 7.0.26及之前版本中存在权限提升漏洞，由于应用程序服务使用无引号的搜索路径元素，允许攻击者以提升的权限执行任意代码。

Severity

高

Patch Name

mySCADA myPRO权限提升漏洞的补丁

Patch Description

myPRO是一个HMI/SCADA系统，主要用于工业过程的可视化和控制。 mySCADA myPRO 7.0.26及之前版本中存在权限提升漏洞，由于应用程序服务使用无引号的搜索路径元素，允许攻击者以提升的权限执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： https://www.myscada.org/download/

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01

Impacted products

Name
mySCADA myPRO <=7.0.26

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-12730"
    }
  },
  "description": "myPRO\u662f\u4e00\u4e2aHMI/SCADA\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5de5\u4e1a\u8fc7\u7a0b\u7684\u53ef\u89c6\u5316\u548c\u63a7\u5236\u3002\r\n\r\nmySCADA myPRO 7.0.26\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u7531\u4e8e\u5e94\u7528\u7a0b\u5e8f\u670d\u52a1\u4f7f\u7528\u65e0\u5f15\u53f7\u7684\u641c\u7d22\u8def\u5f84\u5143\u7d20\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u4ee5\u63d0\u5347\u7684\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "discovererName": "Karn Ganeshen",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a \r\nhttps://www.myscada.org/download/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-26426",
  "openTime": "2017-09-13",
  "patchDescription": "myPRO\u662f\u4e00\u4e2aHMI/SCADA\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5de5\u4e1a\u8fc7\u7a0b\u7684\u53ef\u89c6\u5316\u548c\u63a7\u5236\u3002\r\n\r\nmySCADA myPRO 7.0.26\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u7531\u4e8e\u5e94\u7528\u7a0b\u5e8f\u670d\u52a1\u4f7f\u7528\u65e0\u5f15\u53f7\u7684\u641c\u7d22\u8def\u5f84\u5143\u7d20\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u4ee5\u63d0\u5347\u7684\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "mySCADA myPRO\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "mySCADA myPRO \u003c=7.0.26"
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01",
  "serverity": "\u9ad8",
  "submitTime": "2017-09-13",
  "title": "mySCADA myPRO\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2017-12730 (GCVE-0-2017-12730)

Vulnerability from cvelistv5 – Published: 2017-10-06 04:00 – Updated: 2024-08-05 18:43

Summary

An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Application services utilize unquoted search path elements, which could allow an attacker to execute arbitrary code with elevated privileges.

Severity ?

No CVSS data available.

CWE

CWE-428

Assigner

icscert

References

URL

Tags

	http://www.securityfocus.com/bid/100815	vdb-entryx_refsource_BID
	https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	mySCADA myPRO	Affected: mySCADA myPRO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:43:56.662Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "100815",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/100815"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "mySCADA myPRO",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "mySCADA myPRO"
            }
          ]
        }
      ],
      "datePublic": "2017-10-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Application services utilize unquoted search path elements, which could allow an attacker to execute arbitrary code with elevated privileges."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-428",
              "description": "CWE-428",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-06T09:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "name": "100815",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/100815"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2017-12730",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "mySCADA myPRO",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "mySCADA myPRO"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Application services utilize unquoted search path elements, which could allow an attacker to execute arbitrary code with elevated privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-428"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "100815",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/100815"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2017-12730",
    "datePublished": "2017-10-06T04:00:00",
    "dateReserved": "2017-08-09T00:00:00",
    "dateUpdated": "2024-08-05T18:43:56.662Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-26426

CVE-2017-12730 (GCVE-0-2017-12730)

Tags

Sightings

Nomenclature