2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2022-31486" ,
"sourceIdentifier" : "productsecurity@carrier.com" ,
"published" : "2022-06-06T17:15:11.810" ,
2024-11-23 15:12:23 +00:00
"lastModified" : "2024-11-21T07:04:33.760" ,
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "An authenticated attacker can send a specially crafted route to the \u201cedit_route.cgi\u201d binary and have it execute shell commands. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.303 for the LP series and 1.297 for the EP series. An attacker with this level of access on the device can monitor all communications sent to and from this device, modify onboard relays, change configuration files, or cause the device to become unstable."
} ,
{
"lang" : "es" ,
"value" : "Un atacante autenticado puede enviar una ruta especialmente dise\u00f1ada al binario \"edit_route.cgi\" y hacer que ejecute comandos de shell. Esta vulnerabilidad afecta a los productos basados en los controladores inteligentes HID Mercury LP1501, LP1502, LP2500, LP4502 y EP4502 que contienen versiones de firmware anteriores a 1.303 para la serie LP y 1.297 para la serie EP. Un atacante con este nivel de acceso en el dispositivo puede monitorear todas las comunicaciones enviadas hacia y desde este dispositivo, modificar los rel\u00e9s incorporados, cambiar los archivos de configuraci\u00f3n o causar que el dispositivo se vuelva inestable"
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
2024-11-23 15:12:23 +00:00
"source" : "productsecurity@carrier.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 8.8 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.8 ,
"impactScore" : 5.9
} ,
{
2024-11-23 15:12:23 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 8.8 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.8 ,
"impactScore" : 5.9
}
] ,
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:S/C:C/I:C/A:C" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 9.0 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "SINGLE" ,
"confidentialityImpact" : "COMPLETE" ,
"integrityImpact" : "COMPLETE" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "COMPLETE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "HIGH" ,
"exploitabilityScore" : 8.0 ,
"impactScore" : 10.0 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
2024-11-23 15:12:23 +00:00
"source" : "productsecurity@carrier.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-78"
}
]
} ,
{
2024-11-23 15:12:23 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-78"
}
]
}
] ,
"configurations" : [
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:hidglobal:lp1501_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "B8EB5D8F-0EAF-4960-9C1F-4E43614AEF1E"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:hidglobal:lp1501:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B9DC3EC5-C67D-4FE5-8B53-04AB785588FE"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:hidglobal:lp1502_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "B2753AA2-75FC-40F7-A8EC-D76CB3BAEC9C"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:hidglobal:lp1502:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "902FDABA-C5D0-4CAE-BBDF-E4338D3A4DAF"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:hidglobal:lp2500_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "CB0D54B1-6140-4BD5-A49D-B5983A2CCB84"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:hidglobal:lp2500:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AAC2A69E-BF7D-448B-8347-19CFFABED15A"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:hidglobal:lp4502_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "7F351A13-995A-43C0-A87D-B534DCD8512E"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:hidglobal:lp4502:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "22147A65-6ADE-46F3-AFF8-E46CE81D6E8B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:hidglobal:ep4502_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.297" ,
"matchCriteriaId" : "6F16DD76-4C6B-4ACE-BFAB-C6FCA6355BB5"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:hidglobal:ep4502:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F9A28A38-C57D-4FC6-8CAA-0011AF06D290"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_lnl-4420_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.297" ,
"matchCriteriaId" : "3862AEE4-5B50-434E-B293-3322F6AAE5FE"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_lnl-4420:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "36855319-E36B-47C3-B27E-E1509D1C9D4D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_lnl-x2210_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "2424FA8C-D7D5-40BD-8510-9F1A20C4ADD4"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_lnl-x2210:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3B091C8F-2C3A-47C9-92AC-550D977F781A"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_lnl-x2220_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "854B319F-2138-4F18-96CA-73B13927A4D8"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_lnl-x2220:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "15FD8460-39D0-46C4-9F04-EB3B6C72767A"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_lnl-x3300_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "6C2395B5-E7CC-4A9E-99AB-617D5541B84E"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_lnl-x3300:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "389BE7A1-1B57-4097-9AAF-A6931C06BA15"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_lnl-x4420_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "531D12F9-E636-43C5-8E66-CA057DAFC4BF"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_lnl-x4420:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2BC2BAEA-E139-47C2-9A8F-857AB1C7D54B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_s2-lp-1501_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "3EF4C948-4174-4F5A-881B-0FB985D9331D"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_s2-lp-1501:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3183C665-CD31-446D-8D95-908148675D25"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_s2-lp-1502_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "0722187B-9BCB-4D59-9E47-10700F331AEE"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_s2-lp-1502:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "93B38941-79D8-41E7-9763-989C0C3B6139"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_s2-lp-2500_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "7322CD14-B238-44B8-A3F6-C2FD91EEADBC"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_s2-lp-2500:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1724D78F-EE79-4E48-BDB2-D399C573F42D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:carrier:lenels2_s2-lp-4502_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.303" ,
"matchCriteriaId" : "EF3856F1-9777-4389-A8B5-228EE3858C89"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:carrier:lenels2_s2-lp-4502:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "115129D2-5134-4BCD-B5D0-263F4687B59D"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://www.corporate.carrier.com/product-security/advisories-resources/" ,
"source" : "productsecurity@carrier.com" ,
"tags" : [
"Vendor Advisory"
]
2024-11-23 15:12:23 +00:00
} ,
{
"url" : "https://www.corporate.carrier.com/product-security/advisories-resources/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
