Lucene search

Japan Vulnerability NotesJVN:37417423

HistoryFeb 19, 2021 - 12:00 a.m.

JVN#37417423: Multiple vulnerabilities in SolarView Compact

2021-02-1900:00:00

Japan Vulnerability Notes

jvn.jp

262

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.96 High

EPSS

Percentile

99.5%

JSON

SolarView Compact provided by Contec Co., Ltd. contains multiple vulnerabilities listed below.

Exposure of information through directory listing (CWE-548) - CVE-2021-20656

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N	Base Score: 3.5
CVSS v2	AV:A/AC:L/Au:S/C:P/I:N/A:N	Base Score: 2.7

Improper access control (CWE-284) - CVE-2021-20657

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N	Base Score: 4.6
CVSS v2	AV:A/AC:L/Au:S/C:P/I:P/A:N	Base Score: 4.1

OS command injection (CWE-78) - CVE-2021-20658

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L	Base Score: 6.3
CVSS v2	AV:A/AC:L/Au:N/C:P/I:P/A:P	Base Score: 5.8

Unrestricted upload of file with dangerous type (CWE-434) - CVE-2021-20659

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	Base Score: 5.5
CVSS v2	AV:A/AC:L/Au:S/C:P/I:P/A:P	Base Score: 5.2

Cross-site scripting (CWE-79) - CVE-2021-20660

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	Base Score: 6.1
CVSS v2	AV:N/AC:M/Au:N/C:N/I:P/A:N	Base Score: 4.3

Directory traversal (CWE-23) - CVE-2021-20661

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H	Base Score: 6.3
CVSS v2	AV:A/AC:L/Au:S/C:N/I:P/A:P	Base Score: 4.1

Missing authentication for critical function (CWE-306) - CVE-2021-20662

Version	Vector	Score
CVSS v3	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	Base Score: 4.3
CVSS v2	AV:A/AC:L/Au:N/C:N/I:P/A:N	Base Score: 3.3

Using components with known vulnerabilities (CWE-1035) - CVE-2011-0762, CVE-2011-4362, CVE-2013-4508, CVE-2013-4559, CVE-2013-4560, CVE-2014-2323, CVE-2014-2324
The product uses previous versions of vsfpd and lighttpd with known vulnerabilities.

Impact

An attacker who can log in to the product may obtain the information inside the system, e.g. directories and/or file configurations - CVE-2021-20656
An attacker who can log in to the product may obtain and/or alter the setting information without the access privileges. Also, an attacker with the administrative privilege may log in to the product and perform an unintended operation - CVE-2021-20657
An attacker may execute an arbitrary OS command with the web server privilege. Also, an attacker with the administrative privilege may log in to the product and perform an unintended operation - CVE-2021-20658
An attacker who can log in to the product may upload arbitrary files. If the file is PHP script, the attacker may execute arbitrary code - CVE-2021-20659
An arbitrary script may be executed on a logged-in user’s web browser - CVE-2021-20660
An attacker who can log in to the product may delete arbitrary files and/or directories on the server - CVE-2021-20661
An attacker who can log in to the product may alter the setting information without the access privileges - CVE-2021-20662
An attack may be conducted by exploiting known vulnerabilities - CVE-2011-0762, CVE-2011-4362, CVE-2013-4508, CVE-2013-4559, CVE-2013-4560, CVE-2014-2323, CVE-2014-2324

Solution

Update the Firmware
Update the firmware to the latest version according to the information provided by the developer.
These vulnerabilities have been already addressed in the following firmware version.