CVE-2021-27475

Rockwell Automation Connected Components Workbench v12.00.00 and prior does not limit the objects that can be deserialized. This vulnerability allows attackers to craft a malicious serialized object that, if opened by a local user in Connected Components Workbench, may result in remote code execution. This vulnerability requires user interaction to be successfully exploited.

CVSS v3 8.6 HIGH
CVSS v2.0 6.8 MEDIUM

8.6^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131435	Permissions Required Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-21-133-01	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

cpe:2.3:a:rockwellautomation:connected_components_workbench:*:*:*:*:*:*:*:*

History

29 Mar 2022, 17:59

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 6.8 v3 : 8.6
CPE		cpe:2.3:a:rockwellautomation:connected_components_workbench::::::::
First Time		Rockwellautomation connected Components Workbench Rockwellautomation
CWE		CWE-502
References	~~(CONFIRM) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131435 -~~	(CONFIRM) https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131435 - Permissions Required, Vendor Advisory
References	~~(CONFIRM) https://www.cisa.gov/uscert/ics/advisories/icsa-21-133-01 -~~	(CONFIRM) https://www.cisa.gov/uscert/ics/advisories/icsa-21-133-01 - Third Party Advisory, US Government Resource

23 Mar 2022, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-03-23 20:15

Updated : 2023-12-10 14:22

NVD link : CVE-2021-27475

Mitre link : CVE-2021-27475

CVE.ORG link : CVE-2021-27475

JSON object : View

Products Affected

rockwellautomation

connected_components_workbench

CWE

CWE-502

Deserialization of Untrusted Data

{"id": "CVE-2021-27475", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.8}]}, "published": "2022-03-23T20:15:09.270", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131435", "tags": ["Permissions Required", "Vendor Advisory"], "source": "ics-cert@hq.dhs.gov"}, {"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-133-01", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-502"}]}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-502"}]}], "descriptions": [{"lang": "en", "value": "Rockwell Automation Connected Components Workbench v12.00.00 and prior does not limit the objects that can be deserialized. This vulnerability allows attackers to craft a malicious serialized object that, if opened by a local user in Connected Components Workbench, may result in remote code execution. This vulnerability requires user interaction to be successfully exploited."}, {"lang": "es", "value": "Rockwell Automation Connected Components Workbench versiones v12.00.00 y anteriores, no limita los objetos que pueden ser deserializados. Esta vulnerabilidad permite a atacantes dise\u00f1ar un objeto serializado malicioso que, si es abierto por un usuario local en Connected Components Workbench, puede resultar en una ejecuci\u00f3n de c\u00f3digo remota. Esta vulnerabilidad requiere la interacci\u00f3n del usuario para ser explotada con \u00e9xito"}], "lastModified": "2022-03-29T17:59:46.810", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rockwellautomation:connected_components_workbench:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE932FFA-B8FB-41E4-B994-1B898A56C514", "versionEndIncluding": "12.00.00"}], "operator": "OR"}]}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}