mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
339 lines
16 KiB
JSON
339 lines
16 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2023-2262",
|
|
"ASSIGNER": "PSIRT@rockwellautomation.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "\n\n\nA buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN* communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to send a maliciously crafted CIP request to device.\n\n\n\n"
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-121 Stack-based Buffer Overflow",
|
|
"cweId": "CWE-121"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Rockwell Automation",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "1756-EN2T Series A, B, C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2T Series D",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TK Series A, B, C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TXT Series A, B, C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TXT Series D",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TP Series A",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TPK Series A",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TR Series A, B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TR Series C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TRK Series A, B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TRK Series C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TRXT Series A, B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2TRXT Series C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2F Series A, B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2F Series C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2FK Series A, B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN2FK Series C",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN3TR Series A",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN3TR Series B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.003"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN3TRK Series A",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=5.008 & 5.028"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "1756-EN3TRK Series B",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"vendor_name": "Rockwell Auotmation",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "1756-EN2TPXT Series A",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "<=11.002"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140786",
|
|
"refsource": "MISC",
|
|
"name": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140786"
|
|
}
|
|
]
|
|
},
|
|
"generator": {
|
|
"engine": "Vulnogram 0.1.0-dev"
|
|
},
|
|
"source": {
|
|
"discovery": "UNKNOWN"
|
|
},
|
|
"solution": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "<strong>Update firmware.</strong> Update EN2* ControlLogix communications modules to mitigated firmware.<br><ul><li>Restrict traffic to the SMTP port (25), if not needed.</li><li>Customers using the EN2/EN3 versions 10.x and higher can disable the email object, if not needed. Instructions can be found in the <a target=\"_blank\" rel=\"nofollow\" href=\"https://literature.rockwellautomation.com/idc/groups/literature/documents/um/enet-um006_-en-p.pdf\">EtherNet/IP Network Devices User Manual (rockwellautomation.com)</a><span style=\"background-color: var(--wht);\">, publication ENET-UM006.</span></li><li><a target=\"_blank\" rel=\"nofollow\" href=\"https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012\">QA43240 - Recommended Security Guidelines from Rockwell Automation</a></li></ul>\n\n"
|
|
}
|
|
],
|
|
"value": "Update firmware.\u00a0Update EN2* ControlLogix communications modules to mitigated firmware.\n * Restrict traffic to the SMTP port (25), if not needed.\n * Customers using the EN2/EN3 versions 10.x and higher can disable the email object, if not needed. Instructions can be found in the EtherNet/IP Network Devices User Manual (rockwellautomation.com) https://literature.rockwellautomation.com/idc/groups/literature/documents/um/enet-um006_-en-p.pdf , publication ENET-UM006.\n * QA43240 - Recommended Security Guidelines from Rockwell Automation https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012 \n\n\n\n\n"
|
|
}
|
|
],
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"attackComplexity": "LOW",
|
|
"attackVector": "NETWORK",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 9.8,
|
|
"baseSeverity": "CRITICAL",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"privilegesRequired": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"userInteraction": "NONE",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
"version": "3.1"
|
|
}
|
|
]
|
|
}
|
|
} |