Lucene search

[email protected]NVD:CVE-2022-37122

HistoryAug 31, 2022 - 4:15 p.m.

CVE-2022-37122

2022-08-3116:15:11

CWE-22

[email protected]

web.nvd.nist.gov

carel pcoweb

hvac bacnet gateway

arbitrary file disclosure

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.015 Low

EPSS

Percentile

87.2%

JSON

Carel pCOWeb HVAC BACnet Gateway 2.1.0, Firmware: A2.1.0 - B2.1.0, Application Software: 2.15.4A Software v16 13020200 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the ‘file’ GET parameter through the ‘logdownload.cgi’ Bash script is not properly verified before being used to download log files. This can be exploited to disclose the contents of arbitrary and sensitive files via directory traversal attacks.

Affected configurations

NVD

Node

carelpcoweb_card_firmwareRangea2.1.0–b.2.1.0

AND

carelpcoweb_cardMatch-

Node

carelapplicaMatch2.154a

carelapplicaMatch16_13020200

carelpcoweb_hvac_bacnet_gatewayMatch2.1.0

References

packetstormsecurity.com/files/167684/

www.zeroscience.mk/codes/carelpco_dir.txt

www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5709.php

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.015 Low

EPSS

Percentile

87.2%

JSON

Related for NVD:CVE-2022-37122

zeroscience1 prion1 cve1 cvelist1