Sign-up

ID

VAR-201912-0756


CVE

CVE-2019-3951


TITLE

Advantech WebAccess Vulnerable to out-of-bounds writing

Trust: 0.8

sources: JVNDB: JVNDB-2019-013206

DESCRIPTION

Advantech WebAccess before 8.4.3 allows unauthenticated remote attackers to execute arbitrary code or cause a denial of service (memory corruption) due to a stack-based buffer overflow when handling IOCTL 70533 RPC messages. Advantech WebAccess Contains an out-of-bounds vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Advantech WebAccess is a set of HMI / SCADA software based on browser architecture by Advantech of Taiwan, China. The software supports dynamic graphic display and real-time data control, and provides the ability to remotely control and manage automation equipment. A buffer overflow vulnerability exists in Advantech WebAccess versions prior to 8.4.3. The vulnerability originates from a network system or product that incorrectly validates data boundaries when performing operations on memory, causing incorrect read and write operations to be performed on other associated memory locations. An attacker could use this vulnerability to cause a buffer overflow or heap overflow

Trust: 2.43

sources: NVD: CVE-2019-3951 // JVNDB: JVNDB-2019-013206 // CNVD: CNVD-2019-45387 // IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // VULHUB: VHN-155386

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // CNVD: CNVD-2019-45387

AFFECTED PRODUCTS

vendor:advantechmodel:webaccessscope:ltversion:8.4.3

Trust: 2.4

vendor:webaccessmodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // CNVD: CNVD-2019-45387 // JVNDB: JVNDB-2019-013206 // NVD: CVE-2019-3951

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-3951
value: CRITICAL

Trust: 1.0

NVD: CVE-2019-3951
value: CRITICAL

Trust: 0.8

CNVD: CNVD-2019-45387
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201912-657
value: CRITICAL

Trust: 0.6

IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d
value: HIGH

Trust: 0.2

VULHUB: VHN-155386
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2019-3951
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2019-45387
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-155386
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-3951
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: CVE-2019-3951
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // CNVD: CNVD-2019-45387 // VULHUB: VHN-155386 // JVNDB: JVNDB-2019-013206 // CNNVD: CNNVD-201912-657 // NVD: CVE-2019-3951

PROBLEMTYPE DATA

problemtype:CWE-787

Trust: 1.9

problemtype:CWE-121

Trust: 1.0

sources: VULHUB: VHN-155386 // JVNDB: JVNDB-2019-013206 // NVD: CVE-2019-3951

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201912-657

TYPE

Buffer error

Trust: 0.8

sources: IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // CNNVD: CNNVD-201912-657

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-013206

PATCH
title:Advantech WebAccessurl:https://www.advantech.co.jp/industrial-automation/webaccess
Trust: 0.8
title:Patch for Advantech WebAccess Buffer Overflow Vulnerability (CNVD-2019-45387)url:https://www.cnvd.org.cn/patchInfo/show/194185
Trust: 0.6
title:Advantech WebAccess Buffer error vulnerability fixurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=105656
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2019-45387 // 
            
            
            
            JVNDB: JVNDB-2019-013206 // 
            
            
            
            CNNVD: CNNVD-201912-657

EXTERNAL IDS
db:NVDid:CVE-2019-3951
Trust: 3.3
db:TENABLEid:TRA-2019-52
Trust: 3.1
db:CNNVDid:CNNVD-201912-657
Trust: 0.9
db:CNVDid:CNVD-2019-45387
Trust: 0.8
db:JVNDBid:JVNDB-2019-013206
Trust: 0.8
db:IVDid:C5586C26-C6EB-4540-AC12-D193950F7B2D
Trust: 0.2
db:VULHUBid:VHN-155386
Trust: 0.1
sources:
            
            
            IVD: c5586c26-c6eb-4540-ac12-d193950f7b2d // 
            
            
            
            CNVD: CNVD-2019-45387 // 
            
            
            
            VULHUB: VHN-155386 // 
            
            
            
            JVNDB: JVNDB-2019-013206 // 
            
            
            
            CNNVD: CNNVD-201912-657 // 
            
            
            
            NVD: CVE-2019-3951

REFERENCES
url:https://www.tenable.com/security/research/tra-2019-52
Trust: 3.1
url:https://nvd.nist.gov/vuln/detail/cve-2019-3951
Trust: 2.0
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-3951
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2019-45387 // 
            
            
            
            VULHUB: VHN-155386 // 
            
            
            
            JVNDB: JVNDB-2019-013206 // 
            
            
            
            CNNVD: CNNVD-201912-657 // 
            
            
            
            NVD: CVE-2019-3951

SOURCES
db:IVDid:c5586c26-c6eb-4540-ac12-d193950f7b2d
db:CNVDid:CNVD-2019-45387
db:VULHUBid:VHN-155386
db:JVNDBid:JVNDB-2019-013206
db:CNNVDid:CNNVD-201912-657
db:NVDid:CVE-2019-3951

LAST UPDATE DATE
2024-08-14T15:28:19.819000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2019-45387date:2019-12-16T00:00:00
db:VULHUBid:VHN-155386date:2019-12-18T00:00:00
db:JVNDBid:JVNDB-2019-013206date:2019-12-23T00:00:00
db:CNNVDid:CNNVD-201912-657date:2020-06-16T00:00:00
db:NVDid:CVE-2019-3951date:2019-12-18T19:56:48.257

SOURCES RELEASE DATE
db:IVDid:c5586c26-c6eb-4540-ac12-d193950f7b2ddate:2019-12-16T00:00:00
db:CNVDid:CNVD-2019-45387date:2019-12-16T00:00:00
db:VULHUBid:VHN-155386date:2019-12-12T00:00:00
db:JVNDBid:JVNDB-2019-013206date:2019-12-23T00:00:00
db:CNNVDid:CNNVD-201912-657date:2019-12-12T00:00:00
db:NVDid:CVE-2019-3951date:2019-12-12T21:15:12.120