Vulnerability-Lookup

CNVD-2020-35727

Vulnerability from cnvd - Published: 2020-07-01

Title

SWARCO CPU LS4000 G4访问控制错误漏洞

Description

SWARCO CPU LS4000 G4是奥地利SWARCO公司的一套使用在SWARCO芯片中的软件。 SWARCOs CPU LS4000 G4中存在访问控制错误漏洞，该漏洞源于用于调试的开放端口未能进行网络访问控制并且拥有对设备的root访问权限。攻击者可利用该漏洞访问设备并干扰已连接设备的操作。

Severity

高

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法： https://www.swarco.com/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-12493

Impacted products

Name
SWARCO CPU LS4000 G4

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-12493"
    }
  },
  "description": "SWARCO CPU LS4000 G4\u662f\u5965\u5730\u5229SWARCO\u516c\u53f8\u7684\u4e00\u5957\u4f7f\u7528\u5728SWARCO\u82af\u7247\u4e2d\u7684\u8f6f\u4ef6\u3002\n\nSWARCOs CPU LS4000 G4\u4e2d\u5b58\u5728\u8bbf\u95ee\u63a7\u5236\u9519\u8bef\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u4e8e\u8c03\u8bd5\u7684\u5f00\u653e\u7aef\u53e3\u672a\u80fd\u8fdb\u884c\u7f51\u7edc\u8bbf\u95ee\u63a7\u5236\u5e76\u4e14\u62e5\u6709\u5bf9\u8bbe\u5907\u7684root\u8bbf\u95ee\u6743\u9650\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u8bbe\u5907\u5e76\u5e72\u6270\u5df2\u8fde\u63a5\u8bbe\u5907\u7684\u64cd\u4f5c\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\nhttps://www.swarco.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-35727",
  "openTime": "2020-07-01",
  "products": {
    "product": "SWARCO CPU LS4000 G4"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-12493",
  "serverity": "\u9ad8",
  "submitTime": "2020-06-01",
  "title": "SWARCO CPU LS4000 G4\u8bbf\u95ee\u63a7\u5236\u9519\u8bef\u6f0f\u6d1e"
}

CVE-2020-12493 (GCVE-0-2020-12493)

Vulnerability from cvelistv5 – Published: 2020-05-29 17:27 – Updated: 2024-09-17 01:16

Title

Critical Vulnerability in SWARCO CPU LS4000

Summary

An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via network. A malicious user could use this vulnerability to get access to the device and disturb operations with connected devices.

Severity ?

10 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE

CWE-284 - Improper Access Control

Assigner

CERTVDE

References

URL

Tags

https://cert.vde.com/de-de/advisories/vde-2020-016

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	SWARCO	CPU LS4000	Affected: Operating System G4...

Credits

Martin Aman (ProtectEM) reported this vulnerability. Coordinated by CERT@VDE.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T11:56:52.088Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert.vde.com/de-de/advisories/vde-2020-016"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "all"
          ],
          "product": "CPU LS4000",
          "vendor": "SWARCO",
          "versions": [
            {
              "status": "affected",
              "version": "Operating System G4..."
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Martin Aman (ProtectEM) reported this vulnerability."
        },
        {
          "lang": "en",
          "value": "Coordinated by CERT@VDE."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via network. A malicious user could use this vulnerability to get access to the device and disturb operations with connected devices."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 10,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284 Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-05-29T17:27:54",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert.vde.com/de-de/advisories/vde-2020-016"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "SWARCO TRAFFIC SYSTEMS released a patch to fix the vulnerability and close the port. Please contact your SWARCO TRAFFIC SYSTEMS contact person for further information."
        }
      ],
      "source": {
        "advisory": "VDE-2020-016",
        "discovery": "EXTERNAL"
      },
      "title": "Critical Vulnerability in SWARCO CPU LS4000",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "AKA": "",
          "ASSIGNER": "info@cert.vde.com",
          "DATE_PUBLIC": "",
          "ID": "CVE-2020-12493",
          "STATE": "PUBLIC",
          "TITLE": "Critical Vulnerability in SWARCO CPU LS4000"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "CPU LS4000",
                      "version": {
                        "version_data": [
                          {
                            "platform": "all",
                            "version_affected": "=",
                            "version_name": "Operating System",
                            "version_value": "G4..."
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SWARCO"
              }
            ]
          }
        },
        "configuration": [],
        "credit": [
          {
            "lang": "eng",
            "value": "Martin Aman (ProtectEM) reported this vulnerability."
          },
          {
            "lang": "eng",
            "value": "Coordinated by CERT@VDE."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via network. A malicious user could use this vulnerability to get access to the device and disturb operations with connected devices."
            }
          ]
        },
        "exploit": [],
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 10,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-284 Improper Access Control"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert.vde.com/de-de/advisories/vde-2020-016",
              "refsource": "CONFIRM",
              "url": "https://cert.vde.com/de-de/advisories/vde-2020-016"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "SWARCO TRAFFIC SYSTEMS released a patch to fix the vulnerability and close the port. Please contact your SWARCO TRAFFIC SYSTEMS contact person for further information."
          }
        ],
        "source": {
          "advisory": "VDE-2020-016",
          "defect": [],
          "discovery": "EXTERNAL"
        },
        "work_around": []
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2020-12493",
    "datePublished": "2020-05-29T17:27:54.803785Z",
    "dateReserved": "2020-04-30T00:00:00",
    "dateUpdated": "2024-09-17T01:16:45.556Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-35727

CVE-2020-12493 (GCVE-0-2020-12493)

Tags

Sightings

Nomenclature