cnvd - cnvd-2018-18602

CNVD-2018-18602

Vulnerability from cnvd - Published: 2018-09-12

Title

SEL AcSELerator Architect XML注入漏洞

Description

SEL AcSELerator Architect是美国Schweitzer Engineering Laboratories（SEL）公司的一套用于与变电站进行通信并对其进行配置、管理的系统。 SEL AcSELerator Architect 2.2.24.0及之前版本中存在XML注入漏洞，该漏洞源于程序允许未过滤的输入传入到XML解析器中，攻击者可利用该漏洞泄露或检索任意数据，执行任意代码（在特定平台的某些情况下）并造成拒绝服务。

Severity

高

Patch Name

SEL AcSELerator Architect XML注入漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://selinc.com/products/5032/#tab-downloads

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02

Impacted products

Name
Schweitzer Engineering Laboratories, Inc. (SEL) AcSELerator Architect <=2.2.24.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-10600"
    }
  },
  "description": "SEL AcSELerator Architect\u662f\u7f8e\u56fdSchweitzer Engineering Laboratories\uff08SEL\uff09\u516c\u53f8\u7684\u4e00\u5957\u7528\u4e8e\u4e0e\u53d8\u7535\u7ad9\u8fdb\u884c\u901a\u4fe1\u5e76\u5bf9\u5176\u8fdb\u884c\u914d\u7f6e\u3001\u7ba1\u7406\u7684\u7cfb\u7edf\u3002\r\n\r\nSEL AcSELerator Architect 2.2.24.0\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728XML\u6ce8\u5165\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5141\u8bb8\u672a\u8fc7\u6ee4\u7684\u8f93\u5165\u4f20\u5165\u5230XML\u89e3\u6790\u5668\u4e2d\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6cc4\u9732\u6216\u68c0\u7d22\u4efb\u610f\u6570\u636e\uff0c\u6267\u884c\u4efb\u610f\u4ee3\u7801\uff08\u5728\u7279\u5b9a\u5e73\u53f0\u7684\u67d0\u4e9b\u60c5\u51b5\u4e0b\uff09\u5e76\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Gjoko Krstic",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://selinc.com/products/5032/#tab-downloads",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-18602",
  "openTime": "2018-09-12",
  "patchDescription": "SEL AcSELerator Architect\u662f\u7f8e\u56fdSchweitzer Engineering Laboratories\uff08SEL\uff09\u516c\u53f8\u7684\u4e00\u5957\u7528\u4e8e\u4e0e\u53d8\u7535\u7ad9\u8fdb\u884c\u901a\u4fe1\u5e76\u5bf9\u5176\u8fdb\u884c\u914d\u7f6e\u3001\u7ba1\u7406\u7684\u7cfb\u7edf\u3002\r\n\r\nSEL AcSELerator Architect 2.2.24.0\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728XML\u6ce8\u5165\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5141\u8bb8\u672a\u8fc7\u6ee4\u7684\u8f93\u5165\u4f20\u5165\u5230XML\u89e3\u6790\u5668\u4e2d\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6cc4\u9732\u6216\u68c0\u7d22\u4efb\u610f\u6570\u636e\uff0c\u6267\u884c\u4efb\u610f\u4ee3\u7801\uff08\u5728\u7279\u5b9a\u5e73\u53f0\u7684\u67d0\u4e9b\u60c5\u51b5\u4e0b\uff09\u5e76\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SEL AcSELerator Architect XML\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Schweitzer Engineering Laboratories, Inc. (SEL) AcSELerator Architect \u003c=2.2.24.0"
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02",
  "serverity": "\u9ad8",
  "submitTime": "2018-07-11",
  "title": "SEL AcSELerator Architect XML\u6ce8\u5165\u6f0f\u6d1e"
}

CVE-2018-10600 (GCVE-0-2018-10600)

Vulnerability from cvelistv5 – Published: 2018-07-24 13:00 – Updated: 2024-09-16 16:17

Summary

SEL AcSELerator Architect version 2.2.24.0 and prior allows unsanitized input to be passed to the XML parser, which may allow disclosure and retrieval of arbitrary data, arbitrary code execution (in certain situations on specific platforms), and denial of service attacks.

Severity ?

No CVSS data available.

CWE

CWE-611 - IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCE ('XXE') CWE-611

Assigner

icscert

References

URL

Tags

https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	Schweitzer Engineering Laboratories, Inc.	AcSELerator Architect	Affected: 2.2.24.0 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:39:08.073Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "AcSELerator Architect",
          "vendor": "Schweitzer Engineering Laboratories, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "2.2.24.0 and prior"
            }
          ]
        }
      ],
      "datePublic": "2018-07-10T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "SEL AcSELerator Architect version 2.2.24.0 and prior allows unsanitized input to be passed to the XML parser, which may allow disclosure and retrieval of arbitrary data, arbitrary code execution (in certain situations on specific platforms), and denial of service attacks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-611",
              "description": "IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCE (\u0027XXE\u0027) CWE-611",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-07-24T12:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "DATE_PUBLIC": "2018-07-10T00:00:00",
          "ID": "CVE-2018-10600",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "AcSELerator Architect",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2.2.24.0 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Schweitzer Engineering Laboratories, Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "SEL AcSELerator Architect version 2.2.24.0 and prior allows unsanitized input to be passed to the XML parser, which may allow disclosure and retrieval of arbitrary data, arbitrary code execution (in certain situations on specific platforms), and denial of service attacks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCE (\u0027XXE\u0027) CWE-611"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2018-10600",
    "datePublished": "2018-07-24T13:00:00Z",
    "dateReserved": "2018-05-01T00:00:00",
    "dateUpdated": "2024-09-16T16:17:38.171Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-18602

CVE-2018-10600 (GCVE-0-2018-10600)

Tags

Sightings

Nomenclature