Details of VAR-202303-1538

ID

VAR-202303-1538

CVE

CVE-2023-27977

TITLE

plural Schneider Electric Insufficient Validation of Data Trust in Products Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2023-005874

DESCRIPTION

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause access to delete files in the IGSS project report directory, this could lead to loss of data when an attacker sends specific crafted messages to the Data Server TCP port. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior). This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Schneider Electric IGSS. Authentication is not required to exploit this vulnerability.The specific flaw exists within the IGSSdataServer process, which listens on TCP port 12401 by default. The issue results from the exposure of a dangerous function. An attacker can leverage this vulnerability to create a denial-of-service condition on the system

Trust: 2.88

sources: NVD: CVE-2023-27977 // JVNDB: JVNDB-2023-005874 // ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // VULMON: CVE-2023-27977

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2023-29371

AFFECTED PRODUCTS

vendor:	schneider electric	model:	igss dashboard	scope:	lte	version:	16.0.0.23040	Trust: 1.0
vendor:	schneider electric	model:	igss data server	scope:	lte	version:	16.0.0.23040	Trust: 1.0
vendor:	schneider electric	model:	custom reports	scope:	lte	version:	16.0.0.23040	Trust: 1.0
vendor:	schneider electric	model:	igss dashboard	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	custom reports	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	igss data server	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	igss	scope:	-	version:	-	Trust: 0.7
vendor:	schneider	model:	electric igss data server	scope:	lte	version:	<=v16.0.0.23040	Trust: 0.6
vendor:	schneider	model:	electric igss dashboard	scope:	lte	version:	<=v16.0.0.23040	Trust: 0.6
vendor:	schneider	model:	electric custom reports	scope:	lte	version:	<=v16.0.0.23040	Trust: 0.6

sources: ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // JVNDB: JVNDB-2023-005874 // NVD: CVE-2023-27977

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2023-27977
value:	MEDIUM
Trust: 1.0
cybersecurity@se.com:	CVE-2023-27977
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2023-27977
value:	MEDIUM
Trust: 0.8
ZDI:	CVE-2023-27977
value:	MEDIUM
Trust: 0.7
CNVD:	CNVD-2023-29371
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202303-1581
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2023-29371
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2023-27977
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.1
Trust: 1.0
cybersecurity@se.com:	CVE-2023-27977
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	LOW
exploitabilityScore:	3.9
impactScore:	2.5
version:	3.1
Trust: 1.0
NVD:	CVE-2023-27977
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8
ZDI:	CVE-2023-27977
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	LOW
exploitabilityScore:	3.9
impactScore:	2.5
version:	3.0
Trust: 0.7

sources: ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // JVNDB: JVNDB-2023-005874 // CNNVD: CNNVD-202303-1581 // NVD: CVE-2023-27977 // NVD: CVE-2023-27977

PROBLEMTYPE DATA

problemtype:	CWE-345	Trust: 1.0
problemtype:	Inadequate verification of data reliability (CWE-345) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-005874 // NVD: CVE-2023-27977

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202303-1581

TYPE

data forgery

Trust: 0.6

sources: CNNVD: CNNVD-202303-1581

PATCH

title:	Schneider Electric has issued an update to correct this vulnerability.	url:	https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-073-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-073-04.pdf	Trust: 0.7
title:	Patch for Schneider Electric IGSS Data Server Data Forgery Vulnerability (CNVD-2023-29371)	url:	https://www.cnvd.org.cn/patchInfo/show/419131	Trust: 0.6
title:	Schneider Electric IGSS Data Server Repair measures for data forgery problem vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=230895	Trust: 0.6

sources: ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // CNNVD: CNNVD-202303-1581

EXTERNAL IDS

db:	NVD	id:	CVE-2023-27977	Trust: 4.6
db:	SCHNEIDER	id:	SEVD-2023-073-04	Trust: 3.1
db:	ICS CERT	id:	ICSA-23-082-04	Trust: 0.8
db:	JVN	id:	JVNVU94559502	Trust: 0.8
db:	JVNDB	id:	JVNDB-2023-005874	Trust: 0.8
db:	ZDI_CAN	id:	ZDI-CAN-19654	Trust: 0.7
db:	ZDI	id:	ZDI-23-335	Trust: 0.7
db:	CNVD	id:	CNVD-2023-29371	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.1792	Trust: 0.6
db:	CNNVD	id:	CNNVD-202303-1581	Trust: 0.6
db:	VULMON	id:	CVE-2023-27977	Trust: 0.1

sources: ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // VULMON: CVE-2023-27977 // JVNDB: JVNDB-2023-005874 // CNNVD: CNNVD-202303-1581 // NVD: CVE-2023-27977

REFERENCES

url:	https://download.schneider-electric.com/files?p_doc_ref=sevd-2023-073-04&p_endoctype=security+and+safety+notice&p_file_name=sevd-2023-073-04.pdf	Trust: 3.8
url:	https://jvn.jp/vu/jvnvu94559502/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2023-27977	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-082-04	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2023-27977/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.1792	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/345.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: ZDI: ZDI-23-335 // CNVD: CNVD-2023-29371 // VULMON: CVE-2023-27977 // JVNDB: JVNDB-2023-005874 // CNNVD: CNNVD-202303-1581 // NVD: CVE-2023-27977

CREDITS

kimiya

Trust: 0.7

sources: ZDI: ZDI-23-335

SOURCES

db:	ZDI	id:	ZDI-23-335
db:	CNVD	id:	CNVD-2023-29371
db:	VULMON	id:	CVE-2023-27977
db:	JVNDB	id:	JVNDB-2023-005874
db:	CNNVD	id:	CNNVD-202303-1581
db:	NVD	id:	CVE-2023-27977

LAST UPDATE DATE

2024-08-14T13:20:57.212000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-23-335	date:	2023-03-16T00:00:00
db:	CNVD	id:	CNVD-2023-29371	date:	2023-04-20T00:00:00
db:	VULMON	id:	CVE-2023-27977	date:	2023-03-21T00:00:00
db:	JVNDB	id:	JVNDB-2023-005874	date:	2023-11-10T05:14:00
db:	CNNVD	id:	CNNVD-202303-1581	date:	2023-03-29T00:00:00
db:	NVD	id:	CVE-2023-27977	date:	2023-05-15T15:01:28.517

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-23-335	date:	2023-03-16T00:00:00
db:	CNVD	id:	CNVD-2023-29371	date:	2023-04-20T00:00:00
db:	VULMON	id:	CVE-2023-27977	date:	2023-03-21T00:00:00
db:	JVNDB	id:	JVNDB-2023-005874	date:	2023-11-10T00:00:00
db:	CNNVD	id:	CNNVD-202303-1581	date:	2023-03-21T00:00:00
db:	NVD	id:	CVE-2023-27977	date:	2023-03-21T12:15:10.647