Details of VAR-201904-1023

ID

VAR-201904-1023

CVE

CVE-2019-10955

TITLE

plural Rockwell Automation Open redirect vulnerability in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-004245

DESCRIPTION

In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 and earlier, CompactLogix 5370 L1 controllers v30.014 and earlier, CompactLogix 5370 L2 controllers v30.014 and earlier, CompactLogix 5370 L3 controllers (includes CompactLogix GuardLogix controllers) v30.014 and earlier, an open redirect vulnerability could allow a remote unauthenticated attacker to input a malicious link to redirect users to a malicious site that could run or download arbitrary malware on the user’s machine. plural Rockwell Automation The product contains an open redirect vulnerability.Information may be obtained and information may be altered. Rockwell Automation MicroLogix 1400 Controllers Series A are all programmable logic controllers from Rockwell Automation. An input validation error vulnerability exists in several Rockwell Automation products that originated from a network system or product that did not properly validate the input data. An attacker exploiting a vulnerability can build a well-designed URI and entice a user to follow it. When a victim tracks a link, they may be redirected to an attacker-controlled site to aid in phishing attacks. Other attacks are possible

Trust: 2.7

sources: NVD: CVE-2019-10955 // JVNDB: JVNDB-2019-004245 // CNVD: CNVD-2019-14396 // BID: 108049 // IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // VULHUB: VHN-142553

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // CNVD: CNVD-2019-14396

AFFECTED PRODUCTS

vendor:	rockwellautomation	model:	compactlogix 5370 l1	scope:	lte	version:	30.014	Trust: 1.0
vendor:	rockwellautomation	model:	micrologix 1100	scope:	lte	version:	14.00	Trust: 1.0
vendor:	rockwellautomation	model:	micrologix 1400 b	scope:	lte	version:	15.002	Trust: 1.0
vendor:	rockwellautomation	model:	compactlogix 5370 l3	scope:	lte	version:	30.014	Trust: 1.0
vendor:	rockwellautomation	model:	micrologix 1400 a	scope:	eq	version:	*	Trust: 1.0
vendor:	rockwellautomation	model:	compactlogix 5370 l2	scope:	lte	version:	30.014	Trust: 1.0
vendor:	rockwell	model:	automation micrologix controllers	scope:	eq	version:	110014.00	Trust: 0.9
vendor:	rockwell	model:	automation compactlogix l3	scope:	eq	version:	537030.014	Trust: 0.9
vendor:	rockwell	model:	automation compactlogix l2	scope:	eq	version:	537030.014	Trust: 0.9
vendor:	rockwell	model:	automation compactlogix l1	scope:	eq	version:	537030.014	Trust: 0.9
vendor:	rockwell automation	model:	compactlogix 5370 l1	scope:	lte	version:	30.014	Trust: 0.8
vendor:	rockwell automation	model:	compactlogix 5370 l2	scope:	lte	version:	30.014	Trust: 0.8
vendor:	rockwell automation	model:	compactlogix 5370 l3	scope:	lte	version:	30.014	Trust: 0.8
vendor:	rockwell automation	model:	micrologix 1100	scope:	lte	version:	14.00	Trust: 0.8
vendor:	rockwell automation	model:	micrologix 1400 a	scope:	-	version:	-	Trust: 0.8
vendor:	rockwell automation	model:	micrologix 1400 b	scope:	lte	version:	15.002	Trust: 0.8
vendor:	rockwell	model:	automation micrologix controllers series b	scope:	eq	version:	140015.002	Trust: 0.6
vendor:	rockwell	model:	automation micrologix controllers series a	scope:	eq	version:	1400	Trust: 0.6
vendor:	rockwall	model:	automation micrologix controllers series b	scope:	eq	version:	140015.002	Trust: 0.3
vendor:	rockwall	model:	automation micrologix controllers series a	scope:	eq	version:	14000	Trust: 0.3
vendor:	micrologix 1400 a	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	micrologix 1400 b	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	micrologix 1100	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	compactlogix 5370 l1	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	compactlogix 5370 l2	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	compactlogix 5370 l3	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // CNVD: CNVD-2019-14396 // BID: 108049 // JVNDB: JVNDB-2019-004245 // NVD: CVE-2019-10955

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-10955
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2019-10955
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2019-14396
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201904-1053
value:	MEDIUM
Trust: 0.6
IVD:	97035cb3-c916-4f33-be89-ac33b1bbe2a3
value:	MEDIUM
Trust: 0.2
VULHUB:	VHN-142553
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2019-10955
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2019-14396
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	97035cb3-c916-4f33-be89-ac33b1bbe2a3
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-142553
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-10955
baseSeverity:	MEDIUM
baseScore:	6.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	2.7
version:	3.0
Trust: 1.8

sources: IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // CNVD: CNVD-2019-14396 // VULHUB: VHN-142553 // JVNDB: JVNDB-2019-004245 // CNNVD: CNNVD-201904-1053 // NVD: CVE-2019-10955

PROBLEMTYPE DATA

problemtype:

CWE-601

Trust: 1.9

sources: VULHUB: VHN-142553 // JVNDB: JVNDB-2019-004245 // NVD: CVE-2019-10955

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201904-1053

TYPE

Input validation error

Trust: 1.1

sources: IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // BID: 108049 // CNNVD: CNNVD-201904-1053

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-004245

PATCH

title:	Top Page	url:	https://www.rockwellautomation.com/site-selection.html	Trust: 0.8
title:	Multiple Rockwell Automation products enter patches for validation error vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/161289	Trust: 0.6
title:	Multiple Rockwell Automation Product input verification error vulnerability fixes	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=91903	Trust: 0.6

sources: CNVD: CNVD-2019-14396 // JVNDB: JVNDB-2019-004245 // CNNVD: CNNVD-201904-1053

EXTERNAL IDS

db:	NVD	id:	CVE-2019-10955	Trust: 3.6
db:	ICS CERT	id:	ICSA-19-113-01	Trust: 3.4
db:	BID	id:	108049	Trust: 2.6
db:	CNNVD	id:	CNNVD-201904-1053	Trust: 0.9
db:	CNVD	id:	CNVD-2019-14396	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-004245	Trust: 0.8
db:	AUSCERT	id:	ESB-2019.1385	Trust: 0.6
db:	IVD	id:	97035CB3-C916-4F33-BE89-AC33B1BBE2A3	Trust: 0.2
db:	VULHUB	id:	VHN-142553	Trust: 0.1

sources: IVD: 97035cb3-c916-4f33-be89-ac33b1bbe2a3 // CNVD: CNVD-2019-14396 // VULHUB: VHN-142553 // BID: 108049 // JVNDB: JVNDB-2019-004245 // CNNVD: CNNVD-201904-1053 // NVD: CVE-2019-10955

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-19-113-01	Trust: 3.4
url:	https://www.securityfocus.com/bid/108049	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2019-10955	Trust: 1.4
url:	https://www.rockwellautomation.com/en_in/overview.page	Trust: 0.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10955	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/79558	Trust: 0.6

sources: CNVD: CNVD-2019-14396 // VULHUB: VHN-142553 // BID: 108049 // JVNDB: JVNDB-2019-004245 // CNNVD: CNNVD-201904-1053 // NVD: CVE-2019-10955

CREDITS

Josiah Bryan and Geancarlo Palavicini,Josiah Bryan and Geancarlo Palavicini reported this vulnerability to NCCIC.

Trust: 0.6

sources: CNNVD: CNNVD-201904-1053

SOURCES

db:	IVD	id:	97035cb3-c916-4f33-be89-ac33b1bbe2a3
db:	CNVD	id:	CNVD-2019-14396
db:	VULHUB	id:	VHN-142553
db:	BID	id:	108049
db:	JVNDB	id:	JVNDB-2019-004245
db:	CNNVD	id:	CNNVD-201904-1053
db:	NVD	id:	CVE-2019-10955

LAST UPDATE DATE

2024-08-14T14:56:52.164000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-14396	date:	2019-05-15T00:00:00
db:	VULHUB	id:	VHN-142553	date:	2020-02-10T00:00:00
db:	BID	id:	108049	date:	2019-04-23T00:00:00
db:	JVNDB	id:	JVNDB-2019-004245	date:	2019-05-29T00:00:00
db:	CNNVD	id:	CNNVD-201904-1053	date:	2020-02-12T00:00:00
db:	NVD	id:	CVE-2019-10955	date:	2020-02-10T21:49:28.683

SOURCES RELEASE DATE

db:	IVD	id:	97035cb3-c916-4f33-be89-ac33b1bbe2a3	date:	2019-05-15T00:00:00
db:	CNVD	id:	CNVD-2019-14396	date:	2019-05-15T00:00:00
db:	VULHUB	id:	VHN-142553	date:	2019-04-25T00:00:00
db:	BID	id:	108049	date:	2019-04-23T00:00:00
db:	JVNDB	id:	JVNDB-2019-004245	date:	2019-05-29T00:00:00
db:	CNNVD	id:	CNNVD-201904-1053	date:	2019-04-23T00:00:00
db:	NVD	id:	CVE-2019-10955	date:	2019-04-25T18:29:00.397