github - ghsa-7jxv-2xpm-95jx

GHSA-7JXV-2XPM-95JX

Vulnerability from github – Published: 2022-05-24 19:16 – Updated: 2022-05-24 19:16

Details

ECOA BAS controller is vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers with general user's privilege can remotely bypass authorization and access the hidden resources in the system and execute privileged functionalities.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-41298"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-284",
      "CWE-639"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-09-30T11:15:00Z",
    "severity": "HIGH"
  },
  "details": "ECOA BAS controller is vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers with general user\u0027s privilege can remotely bypass authorization and access the hidden resources in the system and execute privileged functionalities.",
  "id": "GHSA-7jxv-2xpm-95jx",
  "modified": "2022-05-24T19:16:13Z",
  "published": "2022-05-24T19:16:13Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41298"
    },
    {
      "type": "WEB",
      "url": "https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2021-41298 (GCVE-0-2021-41298)

Vulnerability from cvelistv5 – Published: 2021-09-30 10:41 – Updated: 2024-09-16 20:16

Summary

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-284 - Improper Access Control

Assigner

twcert

References

URL

Tags

https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html

x_refsource_MISC

Impacted products

Vendor

Product

Version

ECOA

ECS Router Controller ECS (FLASH)

Unknown: next of 0 , < unspecified (custom)

ECOA	RiskBuster Terminator E6L45	Unknown: next of 0 , < unspecified (custom)
ECOA	RiskBuster System RB 3.0.0	Unknown: next of 0 , < unspecified (custom)
ECOA	RiskBuster System TRANE 1.0	Unknown: next of 0 , < unspecified (custom)
ECOA	Graphic Control Software	Unknown: next of 0 , < unspecified (custom)
ECOA	SmartHome II E9246	Unknown: next of 0 , < unspecified (custom)
ECOA	RiskTerminator	Unknown: next of 0 , < unspecified (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T03:08:31.834Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ECS Router Controller ECS (FLASH)",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "RiskBuster Terminator E6L45",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "RiskBuster System RB 3.0.0",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "RiskBuster System TRANE 1.0",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "Graphic Control Software",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "SmartHome II E9246",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "RiskTerminator",
          "vendor": "ECOA",
          "versions": [
            {
              "lessThan": "unspecified",
              "status": "unknown",
              "version": "next of 0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2021-09-30T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "ECOA BAS controller is vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers with general user\u0027s privilege can remotely bypass authorization and access the hidden resources in the system and execute privileged functionalities."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284 Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-09-30T10:41:01",
        "orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
        "shortName": "twcert"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Contact tech support from ECOA."
        }
      ],
      "source": {
        "advisory": "TVN-202109014",
        "discovery": "EXTERNAL"
      },
      "title": "ECOA BAS controller - Improper Access Control",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "AKA": "TWCERT/CC",
          "ASSIGNER": "cve@cert.org.tw",
          "DATE_PUBLIC": "2021-09-30T10:13:00.000Z",
          "ID": "CVE-2021-41298",
          "STATE": "PUBLIC",
          "TITLE": "ECOA BAS controller - Improper Access Control"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ECS Router Controller ECS (FLASH)",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "RiskBuster Terminator E6L45",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "RiskBuster System RB 3.0.0",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "RiskBuster System TRANE 1.0",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Graphic Control Software",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SmartHome II E9246",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "RiskTerminator",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "?\u003e",
                            "version_value": "0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "ECOA"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "ECOA BAS controller is vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers with general user\u0027s privilege can remotely bypass authorization and access the hidden resources in the system and execute privileged functionalities."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-284 Improper Access Control"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html",
              "refsource": "MISC",
              "url": "https://www.twcert.org.tw/tw/cp-132-5134-39f74-1.html"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "Contact tech support from ECOA."
          }
        ],
        "source": {
          "advisory": "TVN-202109014",
          "discovery": "EXTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e",
    "assignerShortName": "twcert",
    "cveId": "CVE-2021-41298",
    "datePublished": "2021-09-30T10:41:02.047884Z",
    "dateReserved": "2021-09-15T00:00:00",
    "dateUpdated": "2024-09-16T20:16:40.291Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

GHSA-7JXV-2XPM-95JX

CVE-2021-41298 (GCVE-0-2021-41298)

Tags

Sightings

Nomenclature