Lucene search

MitreCVE-2020-26155

HistoryMar 18, 2021 - 5:15 p.m.

CVE-2020-26155

2021-03-1817:15:13

CWE-732

CWE-427

mitre

web.nvd.nist.gov

utimaco

securityserver

weak permissions

dll hijacking

cve-2020-26155

nvd

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

45.2%

JSON

Multiple files and folders in Utimaco SecurityServer 4.20.0.4 and 4.31.1.0. are installed with Read/Write permissions for authenticated users, which allows for binaries to be manipulated by non-administrator users. Additionally, entries are made to the PATH environment variable which, in conjunction with these weak permissions, could enable an attacker to perform a DLL hijacking attack.

Affected configurations

Nvd

Node

utimacoblock-safe_firmwareMatch2.0.0

utimacoblock-safe_firmwareMatch3.0.0

utimacocryptoserver_cp5_firmwareMatch5.0.0.0

utimacocryptoserver_cp5_firmwareMatch5.1.0.0

utimacocryptoserver_cp5_vs-nfd_firmwareMatch5.1.0.0

utimacopaymentserver_firmwareRange3.0–4.31.0

utimacopaymentserver_hybrid_firmwareRange3.0–4.33.0

utimacosecurityserver_firmwareRange3.0–4.31.1

AND

microsoftwindowsMatch-

VendorProductVersionCPE
utimacoblock-safe_firmware2.0.0cpe:2.3:o:utimaco:block-safe_firmware:2.0.0:*:*:*:*:*:*:*
utimacoblock-safe_firmware3.0.0cpe:2.3:o:utimaco:block-safe_firmware:3.0.0:*:*:*:*:*:*:*
utimacocryptoserver_cp5_firmware5.0.0.0cpe:2.3:o:utimaco:cryptoserver_cp5_firmware:5.0.0.0:*:*:*:*:*:*:*
utimacocryptoserver_cp5_firmware5.1.0.0cpe:2.3:o:utimaco:cryptoserver_cp5_firmware:5.1.0.0:*:*:*:*:*:*:*
utimacocryptoserver_cp5_vs-nfd_firmware5.1.0.0cpe:2.3:o:utimaco:cryptoserver_cp5_vs-nfd_firmware:5.1.0.0:*:*:*:*:*:*:*
utimacopaymentserver_firmware*cpe:2.3:o:utimaco:paymentserver_firmware:*:*:*:*:*:*:*:*
utimacopaymentserver_hybrid_firmware*cpe:2.3:o:utimaco:paymentserver_hybrid_firmware:*:*:*:*:*:*:*:*
utimacosecurityserver_firmware*cpe:2.3:o:utimaco:securityserver_firmware:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
utimaco	block-safe_firmware	2.0.0	cpe:2.3:o:utimaco:block-safe_firmware:2.0.0:::::::*
utimaco	block-safe_firmware	3.0.0	cpe:2.3:o:utimaco:block-safe_firmware:3.0.0:::::::*
utimaco	cryptoserver_cp5_firmware	5.0.0.0	cpe:2.3:o:utimaco:cryptoserver_cp5_firmware:5.0.0.0:::::::*
utimaco	cryptoserver_cp5_firmware	5.1.0.0	cpe:2.3:o:utimaco:cryptoserver_cp5_firmware:5.1.0.0:::::::*
utimaco	cryptoserver_cp5_vs-nfd_firmware	5.1.0.0	cpe:2.3:o:utimaco:cryptoserver_cp5_vs-nfd_firmware:5.1.0.0:::::::*
utimaco	paymentserver_firmware	*	cpe:2.3:o:utimaco:paymentserver_firmware::::::::
utimaco	paymentserver_hybrid_firmware	*	cpe:2.3:o:utimaco:paymentserver_hybrid_firmware::::::::
utimaco	securityserver_firmware	*	cpe:2.3:o:utimaco:securityserver_firmware::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

References

hsm.utimaco.com/products-hardware-security-modules/general-purpose-hsm/

secureyourit.co.uk/wp/2021/03/13/utimaco-cve-2020-26155/

Social References

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

45.2%

JSON

Related for CVE-2020-26155