Lucene search

[email protected]CVE-2023-36609

HistoryJul 03, 2023 - 8:15 p.m.

CVE-2023-36609

2023-07-0320:15:09

CWE-829

[email protected]

web.nvd.nist.gov

cve-2023-36609

tbox

rtus

openvpn

root privileges

user-defined scripts

local server

attacker

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.7%

JSON

The affected TBox RTUs run OpenVPN with root privileges and can run user defined configuration scripts. An attacker could set up a local OpenVPN server and push a malicious script onto the TBox host to acquire root privileges.

Affected configurations

NVD

Node

ovarrotbox_ms-cpu32_firmwareRange≤1.50.598

AND

ovarrotbox_ms-cpu32Match-

Node

ovarrotbox_ms-cpu32-s2_firmwareRange≤1.50.598

AND

ovarrotbox_ms-cpu32-s2Match-

Node

ovarrotbox_lt2_firmwareRange≤1.50.598

AND

ovarrotbox_lt2Match-

Node

ovarrotbox_tg2_firmwareRange≤1.50.598

AND

ovarrotbox_tg2Match-

Node

ovarrotbox_rm2_firmwareRange≤1.50.598

AND

ovarrotbox_rm2Match-

CPENameOperatorVersion
ovarro:tbox_ms-cpu32_firmwareovarro tbox ms-cpu32 firmwarele1.50.598

CPE	Name	Operator	Version
ovarro:tbox_ms-cpu32_firmware	ovarro tbox ms-cpu32 firmware	le	1.50.598

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "TBox MS-CPU32",
    "vendor": "Ovarro",
    "versions": [
      {
        "lessThanOrEqual": "1.50.598",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TBox MS-CPU32-S2",
    "vendor": "Ovarro",
    "versions": [
      {
        "lessThanOrEqual": "1.50.598",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TBox LT2",
    "vendor": "Ovarro",
    "versions": [
      {
        "lessThanOrEqual": "1.50.598",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TBox TG2",
    "vendor": "Ovarro",
    "versions": [
      {
        "lessThanOrEqual": "1.50.598",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TBox RM2",
    "vendor": "Ovarro",
    "versions": [
      {
        "lessThanOrEqual": "1.50.598",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.cisa.gov/news-events/ics-advisories/icsa-23-180-03

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.7%

JSON

Related for CVE-2023-36609

prion1 cvelist1 nvd1 ics1