Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.TENABLE_OT_SEH_CVE-2024-5420.NASL
HistorySep 04, 2024 - 12:00 a.m.

SEH Computertechnik UTN Server PRO and INU-100 Stored Cross-Site Scripting (CVE-2024-5420)

2024-09-0400:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
1
computertechnik
utn server
stored cross-site scripting
cve-2024-5420
tenable ot scanner

CVSS4

8.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/SC:N/VI:L/SI:N/VA:H/SA:H

AI Score

6.4

Confidence

High

JSON

Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting (XSS). This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(502375);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/18");

  script_cve_id("CVE-2024-5420");

  script_name(english:"SEH Computertechnik UTN Server PRO and INU-100 Stored Cross-Site Scripting (CVE-2024-5420)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"Missing input validation in the SEH Computertechnik utnserver Pro, 
SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 
web-interface allows stored Cross-Site Scripting (XSS). This issue 
affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  # https://cyberdanube.com/de/en-multiple-vulnerabilities-in-seh-untserver-pro/index.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?56652e47");
  script_set_attribute(attribute:"see_also", value:"https://nvd.nist.gov/vuln/detail/CVE-2024-5420");
  script_set_attribute(attribute:"solution", value:
"SEH Computertechnik customers need to upgrade the firmware to the latest version available");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:L/VA:H/SC:N/SI:N/SA:H");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:P");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-5420");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(79);

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/06/04");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/06/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/09/04");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:seh:utnserver_pro");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:seh:utnserver_promax");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:seh:inu-100");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/SEH");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/SEH');

var asset = tenable_ot::assets::get(vendor:'SEH');

var vuln_cpes = {
  "cpe:/h:seh:utnserver_pro" :
      {"family" : "SEHUSBDeviceServers", "versionEndIncluding" : "20.1.22"},
  "cpe:/h:seh:utnserver_promax" :
      {"family" : "SEHUSBDeviceServers", "versionEndIncluding" : "20.1.22"},
  "cpe:/h:seh:inu-100" :
      {"family" : "SEHUSBDeviceServers", "versionEndIncluding" : "20.1.22"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);

Related

nvd 1
cve 1
cvelist 1
vulnrichment 1
packetstorm 1
nvd
nvd
CVE-2024-5420
2024-06-04 08:15:11
cve
cve
CVE-2024-5420
2024-06-04 08:15:11
cvelist
cvelist
CVE-2024-5420 Stored Cross-Site Scripting in SEH Computertechnik utnserver Pro
2024-06-04 07:48:27
vulnrichment
vulnrichment
CVE-2024-5420 Stored Cross-Site Scripting in SEH Computertechnik utnserver Pro
2024-06-04 07:48:27
packetstorm
packetstorm
SEH utnserver Pro/ProMAX / INU-100 20.1.22 XSS / DoS / File Disclosure
2024-06-10 00:00:00

CVSS4

8.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/SC:N/VI:L/SI:N/VA:H/SA:H

AI Score

6.4

Confidence

High

JSON
Related for TENABLE_OT_SEH_CVE-2024-5420.NASL
nvd1cve1cvelist1vulnrichment1packetstorm1