Vulnerability-Lookup

CNVD-2018-06429

Vulnerability from cnvd - Published: 2018-03-27

Title

Schneider Electric PowerSCADA Anywhere和Citect Anywhere跨站请求伪造漏洞

Description

Schneider Electric PowerSCADA Anywhere和Citect Anywhere都是法国施耐德电气（Schneider Electric）公司的产品。Schneider Electric PowerSCADA Anywhere是一套变电站监控系统。PowerSCADA Expert是其中的一个数据采集软件。Citect Anywhere是PowerSCADA Anywhere的移动应用程序。 Schneider Electric Citect Anywhere和使用PowerSCADA Expert 8.1版本和8.2版本的PowerSCADA Anywhere 1.0中存在跨站请求伪造漏洞。远程攻击者可利用该漏洞执行未授权的操作。

Severity

中

Patch Name

Schneider Electric PowerSCADA Anywhere和Citect Anywhere跨站请求伪造漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/

Reference

http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/

Impacted products

Name
['Schneider Electric Citect Anywhere 1.0', 'Schneider Electric PowerSCADA Anywhere 1.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-9963",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9963"
    }
  },
  "description": "Schneider Electric PowerSCADA Anywhere\u548cCitect Anywhere\u90fd\u662f\u6cd5\u56fd\u65bd\u8010\u5fb7\u7535\u6c14\uff08Schneider Electric\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Schneider Electric PowerSCADA Anywhere\u662f\u4e00\u5957\u53d8\u7535\u7ad9\u76d1\u63a7\u7cfb\u7edf\u3002PowerSCADA Expert\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6570\u636e\u91c7\u96c6\u8f6f\u4ef6\u3002Citect Anywhere\u662fPowerSCADA Anywhere\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nSchneider Electric Citect Anywhere\u548c\u4f7f\u7528PowerSCADA Expert 8.1\u7248\u672c\u548c8.2\u7248\u672c\u7684PowerSCADA Anywhere 1.0\u4e2d\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002",
  "discovererName": "Schneider Electric",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-06429",
  "openTime": "2018-03-27",
  "patchDescription": "Schneider Electric PowerSCADA Anywhere\u548cCitect Anywhere\u90fd\u662f\u6cd5\u56fd\u65bd\u8010\u5fb7\u7535\u6c14\uff08Schneider Electric\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Schneider Electric PowerSCADA Anywhere\u662f\u4e00\u5957\u53d8\u7535\u7ad9\u76d1\u63a7\u7cfb\u7edf\u3002PowerSCADA Expert\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6570\u636e\u91c7\u96c6\u8f6f\u4ef6\u3002Citect Anywhere\u662fPowerSCADA Anywhere\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nSchneider Electric Citect Anywhere\u548c\u4f7f\u7528PowerSCADA Expert 8.1\u7248\u672c\u548c8.2\u7248\u672c\u7684PowerSCADA Anywhere 1.0\u4e2d\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Schneider Electric PowerSCADA Anywhere\u548cCitect Anywhere\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Schneider Electric Citect Anywhere 1.0",
      "Schneider Electric PowerSCADA Anywhere 1.0"
    ]
  },
  "referenceLink": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/",
  "serverity": "\u4e2d",
  "submitTime": "2018-02-28",
  "title": "Schneider Electric PowerSCADA Anywhere\u548cCitect Anywhere\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e"
}

CVE-2017-9963 (GCVE-0-2017-9963)

Vulnerability from cvelistv5 – Published: 2018-02-12 23:00 – Updated: 2024-09-16 18:29

Summary

A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack.

Severity ?

No CVSS data available.

CWE

Assigner

schneider

References

URL

Tags

	https://www.citect.schneider-electric.com/safety-…	x_refsource_MISC
	http://www.schneider-electric.com/en/download/doc…	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T17:24:59.958Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-07-09T15:57:01",
        "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
        "shortName": "schneider"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cybersecurity@schneider-electric.com",
          "DATE_PUBLIC": "2018-02-12T00:00:00",
          "ID": "CVE-2017-9963",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric\u0027s PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. This type of attack requires some level of social engineering in order to get a legitimate user to click on or access a malicious link/site containing the CSRF attack."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere",
              "refsource": "MISC",
              "url": "https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9071-security-notification-citect-anywhere"
            },
            {
              "name": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/",
              "refsource": "CONFIRM",
              "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-173-01/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
    "assignerShortName": "schneider",
    "cveId": "CVE-2017-9963",
    "datePublished": "2018-02-12T23:00:00Z",
    "dateReserved": "2017-06-26T00:00:00",
    "dateUpdated": "2024-09-16T18:29:56.973Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-06429

CVE-2017-9963 (GCVE-0-2017-9963)

Tags

Sightings

Nomenclature