Lucene search

[email protected]CVE-2021-32957

HistoryApr 01, 2022 - 11:15 p.m.

CVE-2021-32957

2022-04-0123:15:09

CWE-89

[email protected]

web.nvd.nist.gov

cve-2021-32957

mdt autosave

vulnerability

binary hijacking

system information

xml

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.8%

JSON

A function in MDT AutoSave versions prior to v6.02.06 is used to retrieve system information for a specific process, and this information collection executes multiple commands and summarizes the information into an XML. This function and subsequent process gives full path to the executable and is therefore vulnerable to binary hijacking.

Affected configurations

NVD

Node

auvesy-mdtautosaveRange<6.02.06

auvesy-mdtautosaveRange7.00–7.04

auvesy-mdtautosave_for_system_platformRange<4.01

auvesy-mdtautosave_for_system_platformMatch5.00

CPENameOperatorVersion
auvesy-mdt:autosaveauvesy-mdt autosavelt6.02.06
auvesy-mdt:autosaveauvesy-mdt autosavele7.04
auvesy-mdt:autosave_for_system_platformauvesy-mdt autosave for system platformlt4.01
auvesy-mdt:autosave_for_system_platformauvesy-mdt autosave for system platformeq5.00

CPE	Name	Operator	Version
auvesy-mdt:autosave	auvesy-mdt autosave	lt	6.02.06
auvesy-mdt:autosave	auvesy-mdt autosave	le	7.04
auvesy-mdt:autosave_for_system_platform	auvesy-mdt autosave for system platform	lt	4.01
auvesy-mdt:autosave_for_system_platform	auvesy-mdt autosave for system platform	eq	5.00

CNA Affected

[
  {
    "product": "MDT AutoSave",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "6.02.06",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "MDT AutoSave",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "7.04",
        "status": "affected",
        "version": "7.00",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "AutoSave for System Platform (A4SP)",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "4.01",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "A4SP",
    "vendor": "MDT Software",
    "versions": [
      {
        "status": "affected",
        "version": "5.00"
      }
    ]
  }
]

References

www.cisa.gov/uscert/ics/advisories/icsa-21-189-02

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.8%

JSON

Related for CVE-2021-32957

nvd1 prion1 cvelist1 ics1