FKIE_CVE-2023-42189

Vulnerability from fkie_nvd - Published: 2023-10-10 03:15 - Updated: 2024-11-21 08:22
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0.0 , Nanoleaf Light strip v.3.5.10, Govee LED Strip v.3.00.42, switchBot Hub2 v.1.0-0.8, Phillips hue hub v.1.59.1959097030, and yeelight smart lamp v.1.12.69 allows a remote attacker to cause a denial of service via a crafted script to the KeySetRemove function.
References
cve@mitre.orghttps://github.com/IoT-Fuzz/IoT-Fuzz/blob/main/Remove%20Key%20Set%20Vulnerability%20Report.pdfThird Party Advisory
cve@mitre.orghttps://github.com/project-chip/connectedhomeip/issues/28518Issue Tracking, Third Party Advisory
cve@mitre.orghttps://github.com/project-chip/connectedhomeip/issues/28679Issue Tracking, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/IoT-Fuzz/IoT-Fuzz/blob/main/Remove%20Key%20Set%20Vulnerability%20Report.pdfThird Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/project-chip/connectedhomeip/issues/28518Issue Tracking, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/project-chip/connectedhomeip/issues/28679Issue Tracking, Third Party Advisory
Impacted products
Vendor Product Version
tapo mini_smart_wi-fi_plug_firmware -
tapo mini_smart_wi-fi_plug -
nanoleaf lightstrip_firmware 3.5.10
nanoleaf lightstrip -
govee led_strip_firmware 3.00.42
govee led_strip -
switchbot hub2_firmware 1.0-0.8
switchbot hub2 -
phillips hue_bridge_firmware 1.59.1959097030
phillips hue_bridge -
yeelight smart_lamp_firmware 1.12.69
yeelight smart_lamp -
tp-link smart_plug_firmware -
tp-link smart_plug -
orein smart_bulb_firmware -
orein smart_bulb -
eve eve_door_and_window_firmware -
eve eve_door_and_window -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:tapo:mini_smart_wi-fi_plug_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABD30F53-CE65-4DB3-8A0B-B26367A58462",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:tapo:mini_smart_wi-fi_plug:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1E838B3-4294-427A-A1F1-34838A9B0577",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:nanoleaf:lightstrip_firmware:3.5.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "989DFDCB-4FA9-414F-9338-A8252FEFDF57",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:nanoleaf:lightstrip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1D083D2-C5A4-4819-BFE0-37B3C083BCFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:govee:led_strip_firmware:3.00.42:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C2C7970-79DD-4A3B-A7B4-14B8F2DF8D7D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:govee:led_strip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0B1C4EC-749F-483D-BEE5-4BA2CCCAF5A6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:switchbot:hub2_firmware:1.0-0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "780404E5-F030-4926-A6EE-D2A2801F3C78",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:switchbot:hub2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C758966A-6044-47AC-8E98-8CFB372C100C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:phillips:hue_bridge_firmware:1.59.1959097030:*:*:*:*:*:*:*",
              "matchCriteriaId": "4DCC92AE-0E40-45B8-A2F9-E6B3FEB26B84",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:phillips:hue_bridge:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA77BC87-E305-4117-A587-F3F8C92A6058",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:yeelight:smart_lamp_firmware:1.12.69:*:*:*:*:*:*:*",
              "matchCriteriaId": "2ECB5733-DB50-45DC-ADC1-DBC38862FDE0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:yeelight:smart_lamp:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "35BF7DF6-A135-4475-BC40-F112801F29C3",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:tp-link:smart_plug_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15183145-06A4-4581-8139-DDE5F739BD60",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:tp-link:smart_plug:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F365908-059D-4672-A763-73371DA99E67",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:orein:smart_bulb_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "59542003-A1FE-4A28-B0FC-01120FD3C82A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:orein:smart_bulb:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DB5483F-2334-4283-9F84-E81D038B001C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:eve:eve_door_and_window_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "60DD5C35-880E-4488-8758-0DA9545F481C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:eve:eve_door_and_window:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC2873C9-86D3-462A-B362-24F2CAE0FC2E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0.0 , Nanoleaf Light strip v.3.5.10, Govee LED Strip v.3.00.42, switchBot Hub2 v.1.0-0.8, Phillips hue hub v.1.59.1959097030, and yeelight smart lamp v.1.12.69 allows a remote attacker to cause a denial of service via a crafted script to the KeySetRemove function."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de permisos inseguros en Connectivity Standards Alliance Matter Official SDK v.1.1.0.0, Nanoleaf Light strip v.3.5.10, Govee LED Strip v.3.00.42, switchBot Hub2 v.1.0-0.8, Phillips hue hub v.1.59.1959097030 y yeelight smart lamp v.1.12.69 permite que un atacante remoto provoque una denegaci\u00f3n de servicio mediante un script manipulado para la funci\u00f3n KeySetRemove."
    }
  ],
  "id": "CVE-2023-42189",
  "lastModified": "2024-11-21T08:22:22.537",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-10-10T03:15:09.530",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/IoT-Fuzz/IoT-Fuzz/blob/main/Remove%20Key%20Set%20Vulnerability%20Report.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://github.com/project-chip/connectedhomeip/issues/28518"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://github.com/project-chip/connectedhomeip/issues/28679"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/IoT-Fuzz/IoT-Fuzz/blob/main/Remove%20Key%20Set%20Vulnerability%20Report.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://github.com/project-chip/connectedhomeip/issues/28518"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://github.com/project-chip/connectedhomeip/issues/28679"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-732"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.