ID

VAR-202205-1116


CVE

CVE-2022-2137


TITLE

Advantech iView addDeviceTreeItem SQL Injection Information Disclosure Vulnerability

Trust: 1.4

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926

DESCRIPTION

The affected product is vulnerable to two SQL injections that require high privileges for exploitation and may allow an unauthorized attacker to disclose information. Advantech Co., Ltd. iView for, SQL There is an injection vulnerability.Information may be obtained. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.The specific flaw exists within the NetworkServlet endpoint, which listens on TCP port 8080 by default. When parsing the device_get_community and device_set_community elements of the addDeviceTreeItem action, the process does not properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to disclose information in the context of SYSTEM

Trust: 2.97

sources: NVD: CVE-2022-2137 // JVNDB: JVNDB-2022-013715 // ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // VULHUB: VHN-426271

AFFECTED PRODUCTS

vendor:advantechmodel:iviewscope: - version: -

Trust: 1.4

vendor:advantechmodel:iviewscope:ltversion:5.7.04.6469

Trust: 1.0

vendor:アドバンテック株式会社model:iviewscope:eqversion:5.7.04.6469

Trust: 0.8

vendor:アドバンテック株式会社model:iviewscope: - version: -

Trust: 0.8

vendor:アドバンテック株式会社model:iviewscope:eqversion: -

Trust: 0.8

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // JVNDB: JVNDB-2022-013715 // NVD: CVE-2022-2137

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI: CVE-2022-2137
value: MEDIUM

Trust: 1.4

nvd@nist.gov: CVE-2022-2137
value: MEDIUM

Trust: 1.0

ics-cert@hq.dhs.gov: CVE-2022-2137
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-2137
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202206-2717
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2022-2137
baseSeverity: MEDIUM
baseScore: 4.9
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.2
impactScore: 3.6
version: 3.1

Trust: 2.0

ZDI: CVE-2022-2137
baseSeverity: MEDIUM
baseScore: 4.9
vectorString: AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.2
impactScore: 3.6
version: 3.0

Trust: 1.4

NVD: CVE-2022-2137
baseSeverity: MEDIUM
baseScore: 4.9
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // JVNDB: JVNDB-2022-013715 // CNNVD: CNNVD-202206-2717 // NVD: CVE-2022-2137 // NVD: CVE-2022-2137

PROBLEMTYPE DATA

problemtype:CWE-89

Trust: 1.1

problemtype:SQL injection (CWE-89) [ others ]

Trust: 0.8

sources: VULHUB: VHN-426271 // JVNDB: JVNDB-2022-013715 // NVD: CVE-2022-2137

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202206-2717

TYPE

SQL injection

Trust: 0.6

sources: CNNVD: CNNVD-202206-2717

PATCH

title:Advantech has issued an update to correct this vulnerability.url:https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-03

Trust: 1.4

title:Advantech iView SQL Repair measures for injecting vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=201806

Trust: 0.6

title: - url:https://github.com/ExpLangcn/FuYao-Go

Trust: 0.1

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // VULMON: CVE-2022-2137 // CNNVD: CNNVD-202206-2717

EXTERNAL IDS

db:NVDid:CVE-2022-2137

Trust: 4.8

db:ICS CERTid:ICSA-22-179-03

Trust: 2.5

db:JVNid:JVNVU97814223

Trust: 0.8

db:JVNDBid:JVNDB-2022-013715

Trust: 0.8

db:ZDI_CANid:ZDI-CAN-16746

Trust: 0.7

db:ZDIid:ZDI-22-927

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-16745

Trust: 0.7

db:ZDIid:ZDI-22-926

Trust: 0.7

db:CS-HELPid:SB2022062918

Trust: 0.6

db:AUSCERTid:ESB-2022.3141

Trust: 0.6

db:CNNVDid:CNNVD-202206-2717

Trust: 0.6

db:VULHUBid:VHN-426271

Trust: 0.1

db:VULMONid:CVE-2022-2137

Trust: 0.1

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // VULHUB: VHN-426271 // VULMON: CVE-2022-2137 // JVNDB: JVNDB-2022-013715 // CNNVD: CNNVD-202206-2717 // NVD: CVE-2022-2137

REFERENCES

url:https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-03

Trust: 3.9

url:https://jvn.jp/vu/jvnvu97814223/

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2022-2137

Trust: 0.8

url:https://cxsecurity.com/cveshow/cve-2022-2137/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2022.3141

Trust: 0.6

url:https://www.cybersecurity-help.cz/vdb/sb2022062918

Trust: 0.6

url:https://us-cert.cisa.gov/ics/advisories/icsa-22-179-03

Trust: 0.6

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926 // VULHUB: VHN-426271 // JVNDB: JVNDB-2022-013715 // CNNVD: CNNVD-202206-2717 // NVD: CVE-2022-2137

CREDITS

@rgod777

Trust: 1.4

sources: ZDI: ZDI-22-927 // ZDI: ZDI-22-926

SOURCES

db:ZDIid:ZDI-22-927
db:ZDIid:ZDI-22-926
db:VULHUBid:VHN-426271
db:VULMONid:CVE-2022-2137
db:JVNDBid:JVNDB-2022-013715
db:CNNVDid:CNNVD-202206-2717
db:NVDid:CVE-2022-2137

LAST UPDATE DATE

2024-08-14T13:42:38.076000+00:00


SOURCES UPDATE DATE

db:ZDIid:ZDI-22-927date:2022-06-30T00:00:00
db:ZDIid:ZDI-22-926date:2022-06-30T00:00:00
db:VULHUBid:VHN-426271date:2022-07-28T00:00:00
db:JVNDBid:JVNDB-2022-013715date:2023-09-11T08:18:00
db:CNNVDid:CNNVD-202206-2717date:2022-07-29T00:00:00
db:NVDid:CVE-2022-2137date:2022-07-28T20:10:50.920

SOURCES RELEASE DATE

db:ZDIid:ZDI-22-927date:2022-06-30T00:00:00
db:ZDIid:ZDI-22-926date:2022-06-30T00:00:00
db:VULHUBid:VHN-426271date:2022-07-22T00:00:00
db:JVNDBid:JVNDB-2022-013715date:2023-09-11T00:00:00
db:CNNVDid:CNNVD-202206-2717date:2022-06-28T00:00:00
db:NVDid:CVE-2022-2137date:2022-07-22T15:15:08.237