ID

VAR-201807-0341


CVE

CVE-2018-10616


TITLE

ABB Panel Builder 800 Input validation vulnerability

Trust: 1.4

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // CNVD: CNVD-2018-18146 // CNNVD: CNNVD-201807-1323

DESCRIPTION

ABB Panel Builder 800 all versions has an improper input validation vulnerability which may allow an attacker to insert and run arbitrary code on a computer where the affected product is used. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of the IpAddress parameters of the ABB BeDVT OPC Driver. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code under the context of an administrator. ABB Panel Builder 800 is a web-based HMI (Human Machine Interface) system from ABB, Switzerland

Trust: 10.53

sources: NVD: CVE-2018-10616 // ZDI: ZDI-18-895 // ZDI: ZDI-18-893 // ZDI: ZDI-18-903 // ZDI: ZDI-18-883 // ZDI: ZDI-18-887 // ZDI: ZDI-18-907 // ZDI: ZDI-18-897 // ZDI: ZDI-18-905 // ZDI: ZDI-18-885 // ZDI: ZDI-18-900 // ZDI: ZDI-18-892 // ZDI: ZDI-18-912 // ZDI: ZDI-18-910 // ZDI: ZDI-18-889 // CNVD: CNVD-2018-18146 // IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // VULHUB: VHN-120393

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // CNVD: CNVD-2018-18146

AFFECTED PRODUCTS

vendor:abbmodel:panel builder 800scope: - version: -

Trust: 9.8

vendor:abbmodel:panel builder 800scope:eqversion: -

Trust: 1.6

vendor:abbmodel:panel builderscope:eqversion:800

Trust: 0.6

vendor:panel builder 800model: - scope:eqversion: -

Trust: 0.2

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-892 // ZDI: ZDI-18-900 // ZDI: ZDI-18-885 // ZDI: ZDI-18-895 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-887 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893 // CNVD: CNVD-2018-18146 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI: CVE-2018-10616
value: MEDIUM

Trust: 5.6

ZDI: CVE-2018-10616
value: HIGH

Trust: 4.2

nvd@nist.gov: CVE-2018-10616
value: HIGH

Trust: 1.0

CNVD: CNVD-2018-18146
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201807-1323
value: HIGH

Trust: 0.6

IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1
value: HIGH

Trust: 0.2

VULHUB: VHN-120393
value: HIGH

Trust: 0.1

ZDI: CVE-2018-10616
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 5.6

nvd@nist.gov: CVE-2018-10616
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 5.2

CNVD: CNVD-2018-18146
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-120393
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-10616
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.0

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-892 // ZDI: ZDI-18-900 // ZDI: ZDI-18-885 // ZDI: ZDI-18-895 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-887 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893 // CNVD: CNVD-2018-18146 // VULHUB: VHN-120393 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.1

sources: VULHUB: VHN-120393 // NVD: CVE-2018-10616

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201807-1323

TYPE

Input validation error

Trust: 0.8

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // CNNVD: CNNVD-201807-1323

PATCH

title:ABB has issued an update to correct this vulnerability.url:https://library.e.abb.com/public/30b77e0dc904475295401b66ec74cd3c/3BSE092089_A_en_SECURITY_-_Panel_Builder_800_Improper_input_validation_vulnerability.pdf?x-sign=OyK2T7i661JL8oQxBk+0/iWUV+hinpu8Nt6nvVmhw581vp4nkzkQbe1JSiJQPtp0

Trust: 9.8

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-892 // ZDI: ZDI-18-900 // ZDI: ZDI-18-885 // ZDI: ZDI-18-895 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-887 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893

EXTERNAL IDS

db:NVDid:CVE-2018-10616

Trust: 12.3

db:ICS CERTid:ICSA-18-198-01

Trust: 2.3

db:BIDid:104882

Trust: 1.7

db:CNNVDid:CNNVD-201807-1323

Trust: 0.9

db:CNVDid:CNVD-2018-18146

Trust: 0.8

db:ZDI_CANid:ZDI-CAN-6143

Trust: 0.7

db:ZDIid:ZDI-18-897

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6085

Trust: 0.7

db:ZDIid:ZDI-18-889

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6422

Trust: 0.7

db:ZDIid:ZDI-18-910

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6423

Trust: 0.7

db:ZDIid:ZDI-18-912

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6096

Trust: 0.7

db:ZDIid:ZDI-18-892

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6140

Trust: 0.7

db:ZDIid:ZDI-18-900

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6052

Trust: 0.7

db:ZDIid:ZDI-18-885

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6136

Trust: 0.7

db:ZDIid:ZDI-18-895

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6226

Trust: 0.7

db:ZDIid:ZDI-18-905

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6349

Trust: 0.7

db:ZDIid:ZDI-18-907

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6083

Trust: 0.7

db:ZDIid:ZDI-18-887

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-5976

Trust: 0.7

db:ZDIid:ZDI-18-883

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6228

Trust: 0.7

db:ZDIid:ZDI-18-903

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6098

Trust: 0.7

db:ZDIid:ZDI-18-893

Trust: 0.7

db:IVDid:E2F971A1-39AB-11E9-BB19-000C29342CB1

Trust: 0.2

db:SEEBUGid:SSVID-98932

Trust: 0.1

db:VULHUBid:VHN-120393

Trust: 0.1

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-892 // ZDI: ZDI-18-900 // ZDI: ZDI-18-885 // ZDI: ZDI-18-895 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-887 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893 // CNVD: CNVD-2018-18146 // VULHUB: VHN-120393 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

REFERENCES

url:https://library.e.abb.com/public/30b77e0dc904475295401b66ec74cd3c/3bse092089_a_en_security_-_panel_builder_800_improper_input_validation_vulnerability.pdf?x-sign=oyk2t7i661jl8oqxbk+0/iwuv+hinpu8nt6nvvmhw581vp4nkzkqbe1jsijqptp0

Trust: 9.8

url:https://ics-cert.us-cert.gov/advisories/icsa-18-198-01

Trust: 2.3

url:http://www.securityfocus.com/bid/104882

Trust: 1.7

url:http://search-ext.abb.com/library/download.aspx?documentid=3bse092089&action=launch

Trust: 1.6

url:http://search-ext.abb.com/library/download.aspx?documentid=3bse092089&action=launch

Trust: 0.7

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-892 // ZDI: ZDI-18-900 // ZDI: ZDI-18-885 // ZDI: ZDI-18-895 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-887 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893 // CNVD: CNVD-2018-18146 // VULHUB: VHN-120393 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

CREDITS

Michael DePlante - Leahy Center for Digital Investigation at Champlain College

Trust: 6.3

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-900 // ZDI: ZDI-18-905 // ZDI: ZDI-18-907 // ZDI: ZDI-18-883 // ZDI: ZDI-18-903 // ZDI: ZDI-18-893

SOURCES

db:IVDid:e2f971a1-39ab-11e9-bb19-000c29342cb1
db:ZDIid:ZDI-18-897
db:ZDIid:ZDI-18-889
db:ZDIid:ZDI-18-910
db:ZDIid:ZDI-18-912
db:ZDIid:ZDI-18-892
db:ZDIid:ZDI-18-900
db:ZDIid:ZDI-18-885
db:ZDIid:ZDI-18-895
db:ZDIid:ZDI-18-905
db:ZDIid:ZDI-18-907
db:ZDIid:ZDI-18-887
db:ZDIid:ZDI-18-883
db:ZDIid:ZDI-18-903
db:ZDIid:ZDI-18-893
db:CNVDid:CNVD-2018-18146
db:VULHUBid:VHN-120393
db:CNNVDid:CNNVD-201807-1323
db:NVDid:CVE-2018-10616

LAST UPDATE DATE

2024-11-07T22:42:15.247000+00:00


SOURCES UPDATE DATE

db:ZDIid:ZDI-18-897date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-889date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-910date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-912date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-892date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-900date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-885date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-895date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-905date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-907date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-887date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-883date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-903date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-893date:2018-08-10T00:00:00
db:CNVDid:CNVD-2018-18146date:2018-09-10T00:00:00
db:VULHUBid:VHN-120393date:2019-10-09T00:00:00
db:CNNVDid:CNNVD-201807-1323date:2019-10-17T00:00:00
db:NVDid:CVE-2018-10616date:2019-10-09T23:32:55.650

SOURCES RELEASE DATE

db:IVDid:e2f971a1-39ab-11e9-bb19-000c29342cb1date:2018-09-10T00:00:00
db:ZDIid:ZDI-18-897date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-889date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-910date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-912date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-892date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-900date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-885date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-895date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-905date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-907date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-887date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-883date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-903date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-893date:2018-08-10T00:00:00
db:CNVDid:CNVD-2018-18146date:2018-09-10T00:00:00
db:VULHUBid:VHN-120393date:2018-07-18T00:00:00
db:CNNVDid:CNNVD-201807-1323date:2018-07-19T00:00:00
db:NVDid:CVE-2018-10616date:2018-07-18T15:29:00.220