CVE-2019-7229

{"id": "CVE-2019-7229", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.4, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 5.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.6}]}, "published": "2019-06-24T18:15:11.107", "references": [{"url": "http://packetstormsecurity.com/files/153387/ABB-HMI-Missing-Signature-Verification.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2019/Jun/34", "tags": ["Exploit", "Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://search.abb.com/library/Download.aspx?DocumentID=3ADR010376&LanguageCode=en&DocumentPartId=&Action=Launch", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://search.abb.com/library/Download.aspx?DocumentID=3ADR010402&LanguageCode=en&DocumentPartId=&Action=Launch", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.darkmatter.ae/xen1thlabs/abb-hmi-absence-of-signature-verification-vulnerability-xl-19-005/", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-494"}]}], "descriptions": [{"lang": "en", "value": "The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its software components: \"Utilization of USB/SD Card to flash the device\" and \"Remote provisioning process via ABB Panel Builder 600 over FTP.\" Neither of these transmission methods implements any form of encryption or authenticity checks against the new firmware HMI software binary files."}, {"lang": "es", "value": "La HMI CP635 de ABB usa dos m\u00e9todos de transmisi\u00f3n diferentes para actualizar su firmware y sus componentes de software: \"Utilization of USB/SD Card to flash the device\" y \"Remote provisioning process via ABB Panel Builder 600 over FTP.\". Ninguno de estos m\u00e9todos de transmisi\u00f3n implementa ninguna forma de cifrado o comprobaci\u00f3n de autenticidad contra los nuevos archivos binarios del software HMI del firmware."}], "lastModified": "2022-01-01T20:17:29.470", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:abb:board_support_package_un31:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BE32FB5-E494-40F1-8B31-1A1A38D02674", "versionEndExcluding": "2.31"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp620_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A06C8DC8-A9DD-4E58-A42F-E0BC0460475F", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp620:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3C49C0B1-EFAE-456C-9F8E-3E454B67110D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp620-web_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "462BAAF1-B4E4-4958-90D3-26C913E8CB69", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp620-web:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "84DAB292-C0B2-4BD9-B806-ED12FC6C7A9E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp630_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B144E42-CF8C-4DFE-8378-F38924FE64C7", "versionEndExcluding": "2.0.8.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp630:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0CBD8A3B-CEE7-4FA3-959C-E828354B5A05"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp630-web_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30776769-AEB4-40E0-A6DC-442177F11D50", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp630-web:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B60F253F-8042-4877-A519-C28459EF6555"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp635_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9C0D685-55E9-4DBB-87C0-2524C64C1D61", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp635:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "77B6E1FC-6DFE-477E-AD49-CE37CEDF27CC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp635-b_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04F7B624-7725-4234-8DD8-54FF926462BD", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp635-b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0559D243-6CCB-418F-A78D-3CB202262F38"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:abb:cp635-web_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "698D0048-4F7B-4D85-81B4-C2DA8C7C7358", "versionEndExcluding": "2.8.0.424"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:abb:cp635-web:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6D3AB80B-8AE2-4359-92B9-1465EB244029"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}