Lucene search

[email protected]CVE-2021-33542

HistoryJun 25, 2021 - 7:15 p.m.

CVE-2021-33542

2021-06-2519:15:09

CWE-824

[email protected]

web.nvd.nist.gov

cve-2021-33542

phoenix contact

classic automation worx

remote code execution

vulnerability

software suite

version 1.87

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

65.1%

JSON

Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a remote code execution vulnerability. Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialized data. The attacker needs to get access to an original bus configuration file (*.bcp) to be able to manipulate data inside. After manipulation the attacker needs to exchange the original file by the manipulated one on the application programming workstation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using these vulnerabilities. Automated systems in operation which were programmed with one of the above-mentioned products are not affected.

Affected configurations

NVD

Node

phoenixcontactconfig\+Range≤1.87

phoenixcontactpc_worxRange≤1.87

phoenixcontactpc_worx_expressRange≤1.87

CPENameOperatorVersion
phoenixcontact:config\+phoenixcontact config+le1.87
phoenixcontact:pc_worxphoenixcontact pc worxle1.87
phoenixcontact:pc_worx_expressphoenixcontact pc worx expressle1.87

CPE	Name	Operator	Version
phoenixcontact:config\+	phoenixcontact config+	le	1.87
phoenixcontact:pc_worx	phoenixcontact pc worx	le	1.87
phoenixcontact:pc_worx_express	phoenixcontact pc worx express	le	1.87

CNA Affected

[
  {
    "product": "Automation Worx Software Suite",
    "vendor": "Phoenix Contact",
    "versions": [
      {
        "lessThanOrEqual": "1.87",
        "status": "affected",
        "version": "PC Worx",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.87",
        "status": "affected",
        "version": "PC Worx Express",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.87",
        "status": "affected",
        "version": "Config+",
        "versionType": "custom"
      }
    ]
  }
]

References

cert.vde.com/en-us/advisories/vde-2021-020

www.zerodayinitiative.com/advisories/ZDI-21-782/

Social References

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

65.1%

JSON

Related for CVE-2021-33542

prion1 nvd1 zdi1 cvelist1 cnvd1