Lucene search

CERTVDECVE-2022-30308

HistoryJun 13, 2022 - 2:15 p.m.

CVE-2022-30308

2022-06-1314:15:09

CWE-863

CWE-78

CERTVDE

web.nvd.nist.gov

cve-2022-30308

festo

controller

cecc-x-m1

http endpoint

post request

command injection

access control

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.002

Percentile

57.4%

JSON

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint “cecc-x-web-viewer-request-on” POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

Affected configurations

Nvd

Node

festocontroller_cecc-x-m1_firmwareRange≤3.8.14

festocontroller_cecc-x-m1_firmwareMatch4.0.14

AND

festocontroller_cecc-x-m1Match-

Node

festocontroller_cecc-x-m1-mv_firmwareRange≤3.8.14

festocontroller_cecc-x-m1-mv_firmwareMatch4.0.14

AND

festocontroller_cecc-x-m1-mvMatch-

Node

festocontroller_cecc-x-m1-mv-s1_firmwareRange≤3.8.14

festocontroller_cecc-x-m1-mv-s1_firmwareMatch4.0.14

AND

festocontroller_cecc-x-m1-mv-s1Match-

Node

festocontroller_cecc-x-m1-ys-l1_firmwareRange≤3.8.14

AND

festocontroller_cecc-x-m1-ys-l1Match-

Node

festocontroller_cecc-x-m1-ys-l2_firmwareRange≤3.8.14

AND

festocontroller_cecc-x-m1-ys-l2Match-

Node

festocontroller_cecc-x-m1-y-yjkp_firmwareRange≤3.8.14

AND

festocontroller_cecc-x-m1-y-yjkpMatch-

Node

festoservo_press_kit_yjkp_firmwareRange≤3.8.14

AND

festoservo_press_kit_yjkpMatch-

Node

festoservo_press_kit_yjkp-_firmwareRange≤3.8.14

AND

festoservo_press_kit_yjkp-Match-

VendorProductVersionCPE
festocontroller_cecc-x-m1_firmware*cpe:2.3:o:festo:controller_cecc-x-m1_firmware:*:*:*:*:*:*:*:*
festocontroller_cecc-x-m1_firmware4.0.14cpe:2.3:o:festo:controller_cecc-x-m1_firmware:4.0.14:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-cpe:2.3:h:festo:controller_cecc-x-m1:-:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv_firmware*cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:*:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv_firmware4.0.14cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:4.0.14:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv-cpe:2.3:h:festo:controller_cecc-x-m1-mv:-:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv-s1_firmware*cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:*:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv-s1_firmware4.0.14cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:4.0.14:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-mv-s1-cpe:2.3:h:festo:controller_cecc-x-m1-mv-s1:-:*:*:*:*:*:*:*
festocontroller_cecc-x-m1-ys-l1_firmware*cpe:2.3:o:festo:controller_cecc-x-m1-ys-l1_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
festo	controller_cecc-x-m1_firmware	*	cpe:2.3:o:festo:controller_cecc-x-m1_firmware::::::::
festo	controller_cecc-x-m1_firmware	4.0.14	cpe:2.3:o:festo:controller_cecc-x-m1_firmware:4.0.14:::::::*
festo	controller_cecc-x-m1	-	cpe:2.3:h:festo:controller_cecc-x-m1:-:::::::*
festo	controller_cecc-x-m1-mv_firmware	*	cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware::::::::
festo	controller_cecc-x-m1-mv_firmware	4.0.14	cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:4.0.14:::::::*
festo	controller_cecc-x-m1-mv	-	cpe:2.3:h:festo:controller_cecc-x-m1-mv:-:::::::*
festo	controller_cecc-x-m1-mv-s1_firmware	*	cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware::::::::
festo	controller_cecc-x-m1-mv-s1_firmware	4.0.14	cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:4.0.14:::::::*
festo	controller_cecc-x-m1-mv-s1	-	cpe:2.3:h:festo:controller_cecc-x-m1-mv-s1:-:::::::*
festo	controller_cecc-x-m1-ys-l1_firmware	*	cpe:2.3:o:festo:controller_cecc-x-m1-ys-l1_firmware::::::::

Rows per page:

1-10 of 191

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1 (4407603)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1 (8124922)",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "4.0.14"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-MV (4407605)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-MV (8124923)",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "4.0.14"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-MV-S1 (4407606)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-MV-S1 (8124924)",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "4.0.14"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-YS-L1 (8082793)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-YS-L2 (8082794)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Controller CECC-X-M1-Y-YJKP (4803891)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Servo Press Kit YJKP (8077950)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Servo Press Kit YJKP- (8058596)",
    "vendor": "Festo",
    "versions": [
      {
        "lessThanOrEqual": "3.8.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "custom"
      }
    ]
  }
]

References

cert.vde.com/en/advisories/VDE-2022-020/

Social References

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.002

Percentile

57.4%

JSON

Related for CVE-2022-30308