cnvd - cnvd-2018-11074

CNVD-2018-11074

Vulnerability from cnvd - Published: 2018-06-08

Title

GE MDS PulseNET and MDS PulseNET Enterprise远程代码执行漏洞

Description

GE MDS PulseNET和MDS PulseNET Enterprise都是美国通用电气（GE）公司的产品。GE MDS PulseNET是一套专为无线电通信系统设计的网络管理软件。 GE MDS PulseNET和MDS PulseNET Enterprise 3.2.1及之前版本中的Java远程方法调用（RMI）输入端口存在授权问题漏洞。远程攻击者可借助Web服务利用该漏洞执行代码。

Severity

高

Patch Name

GE MDS PulseNET and MDS PulseNET Enterprise远程代码执行漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://www.gegridsolutions.com/

Reference

http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet&type=9&file=1 https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02

Impacted products

Name
['GE MDS PulseNET Enterprise <=3.2.1', 'GE MDS PulseNET <=3.2.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-10611"
    }
  },
  "description": "GE MDS PulseNET\u548cMDS PulseNET Enterprise\u90fd\u662f\u7f8e\u56fd\u901a\u7528\u7535\u6c14\uff08GE\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002GE MDS PulseNET\u662f\u4e00\u5957\u4e13\u4e3a\u65e0\u7ebf\u7535\u901a\u4fe1\u7cfb\u7edf\u8bbe\u8ba1\u7684\u7f51\u7edc\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nGE MDS PulseNET\u548cMDS PulseNET Enterprise 3.2.1\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u7684Java\u8fdc\u7a0b\u65b9\u6cd5\u8c03\u7528\uff08RMI\uff09\u8f93\u5165\u7aef\u53e3\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Web\u670d\u52a1\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002",
  "discovererName": "rgod",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.gegridsolutions.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-11074",
  "openTime": "2018-06-08",
  "patchDescription": "GE MDS PulseNET\u548cMDS PulseNET Enterprise\u90fd\u662f\u7f8e\u56fd\u901a\u7528\u7535\u6c14\uff08GE\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002GE MDS PulseNET\u662f\u4e00\u5957\u4e13\u4e3a\u65e0\u7ebf\u7535\u901a\u4fe1\u7cfb\u7edf\u8bbe\u8ba1\u7684\u7f51\u7edc\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nGE MDS PulseNET\u548cMDS PulseNET Enterprise 3.2.1\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u7684Java\u8fdc\u7a0b\u65b9\u6cd5\u8c03\u7528\uff08RMI\uff09\u8f93\u5165\u7aef\u53e3\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Web\u670d\u52a1\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "GE MDS PulseNET and MDS PulseNET Enterprise\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "GE MDS PulseNET Enterprise \u003c=3.2.1",
      "GE MDS PulseNET \u003c=3.2.1"
    ]
  },
  "referenceLink": "http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet\u0026type=9\u0026file=1\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-18-151-02",
  "serverity": "\u9ad8",
  "submitTime": "2018-06-06",
  "title": "GE MDS PulseNET and MDS PulseNET Enterprise\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2018-10611 (GCVE-0-2018-10611)

Vulnerability from cvelistv5 – Published: 2018-06-04 14:00 – Updated: 2024-09-16 18:33

Summary

Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services.

Severity ?

No CVSS data available.

CWE

CWE-287 - Improper Authentication CWE-287

Assigner

icscert

References

URL

Tags

	http://www.securityfocus.com/bid/104377	vdb-entryx_refsource_BID
	http://www.gegridsolutions.com/app/DownloadFile.a…	x_refsource_CONFIRM
	https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	GE	MDS PulseNET and MDS PulseNET Enterprise	Affected: Version 3.2.1 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:46:46.151Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "104377",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/104377"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet\u0026type=9\u0026file=1"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MDS PulseNET and MDS PulseNET Enterprise",
          "vendor": "GE",
          "versions": [
            {
              "status": "affected",
              "version": "Version 3.2.1 and prior"
            }
          ]
        }
      ],
      "datePublic": "2018-05-31T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-287",
              "description": "Improper Authentication CWE-287",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-06-05T09:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "name": "104377",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/104377"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet\u0026type=9\u0026file=1"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "DATE_PUBLIC": "2018-05-31T00:00:00",
          "ID": "CVE-2018-10611",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MDS PulseNET and MDS PulseNET Enterprise",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Version 3.2.1 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "GE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Improper Authentication CWE-287"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "104377",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/104377"
            },
            {
              "name": "http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet\u0026type=9\u0026file=1",
              "refsource": "CONFIRM",
              "url": "http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet\u0026type=9\u0026file=1"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2018-10611",
    "datePublished": "2018-06-04T14:00:00Z",
    "dateReserved": "2018-05-01T00:00:00",
    "dateUpdated": "2024-09-16T18:33:38.782Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-11074

CVE-2018-10611 (GCVE-0-2018-10611)

Tags

Sightings

Nomenclature