Severity High
Patch available YES
Number of vulnerabilities 3
CVE ID CVE-2020-10640
CVE-2020-10632
CVE-2020-10636
CWE ID CWE-306
CWE-264
CWE-326
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
OpenEnterprise

Server applications /
SCADA systems
Vendor Emerson

Security Advisory

1) Missing Authentication for Critical Function

Severity: High

CVSSv3:
8.5 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C] [PCI]

CVE-ID:
CVE-2020-10640

CWE-ID:
CWE-306 – Missing Authentication for Critical Function

Exploit availability:
No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to an insufficient authentication mechanism. A remote attacker can run an arbitrary commands with system privileges or execute arbitrary code via a specific communication service.  

Mitigation

Install updates from vendor’s website.

Vulnerable software versions

OpenEnterprise:
-, 3.3.4

CPE

External links

https://ics-cert.us-cert.gov/advisories/icsa-20-140-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Permissions, Privileges, and Access Controls

Severity: High

CVSSv3:
8.6 [CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C] [PCI]

CVE-ID:
CVE-2020-10632

CWE-ID:
CWE-264 – Permissions, Privileges, and Access Controls

Exploit availability:
No

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to inadequate folder security permissions. A remote authenticated attackr can modificate important configuration files, which could cause the system to fail or behave in an unpredictable manner.

Mitigation

Install updates from vendor’s website.

Vulnerable software versions

OpenEnterprise:
-, 3.3.4

CPE

External links

https://ics-cert.us-cert.gov/advisories/icsa-20-140-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Inadequate Encryption Strength

Severity: Low

CVSSv3:
5.7 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C] [PCI]

CVE-ID:
CVE-2020-10636

CWE-ID:
CWE-326 – Inadequate Encryption Strength

Exploit availability:
No

Description

The vulnerability allows a local user to gain access to sensitive information.


The vulnerability exists due to inadequate encryption. A local user can obtain the passwords for OpenEnterprise user accounts.

Mitigation

Install updates from vendor’s website.

Vulnerable software versions

OpenEnterprise:
-, 3.3.4

CPE

External links

https://ics-cert.us-cert.gov/advisories/icsa-20-140-02

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.

The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.





Source link

Write a comment:
*

Your email address will not be published.