Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-22759 (GCVE-0-2021-22759)
Vulnerability from cvelistv5 – Published: 2021-06-11 15:40 – Updated: 2024-08-03 18:51
VLAI?
EPSS
Summary
A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.
Severity ?
No CVSS data available.
CWE
- CWE-416 - Use after free
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | IGSS Definition (Def.exe) V15.0.0.21140 and prior |
Affected:
IGSS Definition (Def.exe) V15.0.0.21140 and prior
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T18:51:07.426Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IGSS Definition (Def.exe) V15.0.0.21140 and prior",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "IGSS Definition (Def.exe) V15.0.0.21140 and prior"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416: Use after free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-11T15:40:46",
"orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"shortName": "schneider"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2021-22759",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IGSS Definition (Def.exe) V15.0.0.21140 and prior",
"version": {
"version_data": [
{
"version_value": "IGSS Definition (Def.exe) V15.0.0.21140 and prior"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-416: Use after free"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01",
"refsource": "MISC",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
"assignerShortName": "schneider",
"cveId": "CVE-2021-22759",
"datePublished": "2021-06-11T15:40:46",
"dateReserved": "2021-01-06T00:00:00",
"dateUpdated": "2024-08-03T18:51:07.426Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"15.0.0.21140\", \"matchCriteriaId\": \"C5AD9202-97A9-4975-8307-5CCAEBF75A0C\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.\"}, {\"lang\": \"es\", \"value\": \"Un CWE-416: Se presenta una vulnerabilidad de uso de memoria previamente liberada en IGSS Definition (Def.exe) versiones V15.0.0.21140 y anteriores, que podr\\u00eda resultar en la p\\u00e9rdida de datos o una ejecuci\\u00f3n de c\\u00f3digo remota debido al uso de datos de entrada no comprobados, cuando es importado un archivo CGF malicioso a IGSS Definition\"}]",
"id": "CVE-2021-22759",
"lastModified": "2024-11-21T05:50:36.687",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2021-06-11T16:15:10.087",
"references": "[{\"url\": \"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\", \"source\": \"cybersecurity@se.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "cybersecurity@se.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"cybersecurity@se.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-22759\",\"sourceIdentifier\":\"cybersecurity@se.com\",\"published\":\"2021-06-11T16:15:10.087\",\"lastModified\":\"2024-11-21T05:50:36.687\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.\"},{\"lang\":\"es\",\"value\":\"Un CWE-416: Se presenta una vulnerabilidad de uso de memoria previamente liberada en IGSS Definition (Def.exe) versiones V15.0.0.21140 y anteriores, que podr\u00eda resultar en la p\u00e9rdida de datos o una ejecuci\u00f3n de c\u00f3digo remota debido al uso de datos de entrada no comprobados, cuando es importado un archivo CGF malicioso a IGSS Definition\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"cybersecurity@se.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"15.0.0.21140\",\"matchCriteriaId\":\"C5AD9202-97A9-4975-8307-5CCAEBF75A0C\"}]}]}],\"references\":[{\"url\":\"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\",\"source\":\"cybersecurity@se.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
VAR-202106-0537
Vulnerability from variot - Updated: 2023-12-18 11:11A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition. Schneider Electric The following vulnerabilities exist in multiple products provided by the company. IGSS ‥ * Out-of-bounds writing (CWE-787) - CVE-2021-22750 , CVE-2021-22751 , CVE-2021-22752 , CVE-2021-22754 , CVE-2021-22755 ‥ * Out-of-bounds reading (CWE-125) - CVE-2021-22753 , CVE-2021-22756 , CVE-2021-22757 ‥ * Accessing uninitialized pointers (CWE-824) - CVE-2021-22758 ‥ * Use of freed memory (Use-after-free) (CWE-416) - CVE-2021-22759 ‥ * Freeing invalid pointers and references (CWE-763) - CVE-2021-22760 ‥ * Buffer error (CWE-119) - CVE-2021-22761 ‥ * Directory traversal (CWE-22) - CVE-2021-22762Modicon X80 ‥ * Information leakage vulnerability (CWE-200) - CVE-2021-22749The expected impact depends on the vulnerability, but it can be impacted as follows: IGSS ‥ * Fraudulent, crafted by a third party CGF (Configuration Group File) Data is lost or code is executed when importing a file - CVE-2021-22750 , CVE-2021-22754 , CVE-2021-22758 , CVE-2021-22759 , CVE-2021-22760 ‥ * Fraudulent, crafted by a third party CGF (Configuration Group File) Information is stolen or arbitrary code is executed when a file is imported - CVE-2021-22751 ‥ * Fraudulent, crafted by a third party CGF (Configuration Group File) Information is stolen or code is executed when a file is imported - CVE-2021-22755 , CVE-2021-22756 , CVE-2021-22757 , CVE-2021-22761 ‥ * Fraudulent, crafted by a third party WSP (Workspace) Data is lost or code is executed when parsing a file - CVE-2021-22752 , CVE-2021-22753 ‥ * Fraudulent, crafted by a third party CGF (Configuration Group File) , Or WSP (Workspace) Code is executed when the file is imported - CVE-2021-22762Modicon X80 ‥ * Crafted by a remote third party, HTTP Includes communication parameters used for telemetry when a request is received RTU Information is stolen regarding settings - CVE-2021-22749. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. IGSS Definition is a primary program used by system designers. The program is designed to help system designers perform the following tasks: Build a model of the monitored process by using process diagrams. Connect the IGSS to the physical process component by assigning its unique PLC address. There is a security vulnerability in IGSS Definition
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202106-0537",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "interactive graphical scada system",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "15.0.0.21140"
},
{
"model": "modicon x80 bmxnor0200h rtu",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "sv1.70 ir22 and earlier"
},
{
"model": "igss definition",
"scope": null,
"trust": 0.8,
"vendor": "schneider electric",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.0.21140",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2021-22759"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Kimiya, and Michael Heinzl separately reported these vulnerabilities to CISA., working with Trend Micro\u2019s Zero Day Initiative",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
],
"trust": 0.6
},
"cve": "CVE-2021-22759",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-381233",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "IPA",
"availabilityImpact": "High",
"baseScore": 7.8,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "JVNDB-2021-001884",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "Required",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2021-22759",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "IPA",
"id": "JVNDB-2021-001884",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-202104-975",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-202106-601",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-381233",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-381233"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition. Schneider Electric The following vulnerabilities exist in multiple products provided by the company. IGSS \u2025 * Out-of-bounds writing (CWE-787) - CVE-2021-22750 , CVE-2021-22751 , CVE-2021-22752 , CVE-2021-22754 , CVE-2021-22755 \u2025 * Out-of-bounds reading (CWE-125) - CVE-2021-22753 , CVE-2021-22756 , CVE-2021-22757 \u2025 * Accessing uninitialized pointers (CWE-824) - CVE-2021-22758 \u2025 * Use of freed memory (Use-after-free) (CWE-416) - CVE-2021-22759 \u2025 * Freeing invalid pointers and references (CWE-763) - CVE-2021-22760 \u2025 * Buffer error (CWE-119) - CVE-2021-22761 \u2025 * Directory traversal (CWE-22) - CVE-2021-22762Modicon X80 \u2025 * Information leakage vulnerability (CWE-200) - CVE-2021-22749The expected impact depends on the vulnerability, but it can be impacted as follows: IGSS \u2025 * Fraudulent, crafted by a third party CGF (Configuration Group File) Data is lost or code is executed when importing a file - CVE-2021-22750 , CVE-2021-22754 , CVE-2021-22758 , CVE-2021-22759 , CVE-2021-22760 \u2025 * Fraudulent, crafted by a third party CGF (Configuration Group File) Information is stolen or arbitrary code is executed when a file is imported - CVE-2021-22751 \u2025 * Fraudulent, crafted by a third party CGF (Configuration Group File) Information is stolen or code is executed when a file is imported - CVE-2021-22755 , CVE-2021-22756 , CVE-2021-22757 , CVE-2021-22761 \u2025 * Fraudulent, crafted by a third party WSP (Workspace) Data is lost or code is executed when parsing a file - CVE-2021-22752 , CVE-2021-22753 \u2025 * Fraudulent, crafted by a third party CGF (Configuration Group File) , Or WSP (Workspace) Code is executed when the file is imported - CVE-2021-22762Modicon X80 \u2025 * Crafted by a remote third party, HTTP Includes communication parameters used for telemetry when a request is received RTU Information is stolen regarding settings - CVE-2021-22749. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. IGSS Definition is a primary program used by system designers. The program is designed to help system designers perform the following tasks: Build a model of the monitored process by using process diagrams. Connect the IGSS to the physical process component by assigning its unique PLC address. There is a security vulnerability in IGSS Definition",
"sources": [
{
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "VULHUB",
"id": "VHN-381233"
}
],
"trust": 2.25
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2021-22759",
"trust": 2.5
},
{
"db": "SCHNEIDER",
"id": "SEVD-2021-159-01",
"trust": 1.7
},
{
"db": "ICS CERT",
"id": "ICSA-21-159-04",
"trust": 1.4
},
{
"db": "ICS CERT",
"id": "ICSA-21-159-05",
"trust": 0.8
},
{
"db": "JVN",
"id": "JVNVU94079949",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884",
"trust": 0.8
},
{
"db": "CS-HELP",
"id": "SB2021041363",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.2048",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021060921",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202106-601",
"trust": 0.6
},
{
"db": "CNVD",
"id": "CNVD-2021-42150",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-381233",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-381233"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"id": "VAR-202106-0537",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-381233"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T11:11:29.173000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Embedded\u00a0Web\u00a0Server\u00a0for\u00a0Modicon\u00a0X80\u00a0BMXNOR0200H\u00a0RTU\u00a0Module",
"trust": 0.8,
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/igssupdate.zip"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-416",
"trust": 1.1
},
{
"problemtype": "Buffer error (CWE-119) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Out-of-bounds read (CWE-125) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " information leak (CWE-200) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Path traversal (CWE-22) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Use of freed memory (CWE-416) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Freeing invalid pointers and references (CWE-763) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Out-of-bounds writing (CWE-787) [IPA Evaluation ]",
"trust": 0.8
},
{
"problemtype": " Accessing uninitialized pointers (CWE-824) [IPA Evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-381233"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2021-159-01"
},
{
"trust": 1.4,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-04"
},
{
"trust": 0.8,
"url": "http://jvn.jp/cert/jvnvu94079949"
},
{
"trust": 0.8,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-05"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.2048"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021060921"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2021-22759"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-381233"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-381233"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-06-11T00:00:00",
"db": "VULHUB",
"id": "VHN-381233"
},
{
"date": "2021-06-11T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"date": "2021-06-11T16:15:10.087000",
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"date": "2021-04-13T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"date": "2021-06-08T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-06-15T00:00:00",
"db": "VULHUB",
"id": "VHN-381233"
},
{
"date": "2021-06-11T07:10:00",
"db": "JVNDB",
"id": "JVNDB-2021-001884"
},
{
"date": "2021-06-15T19:03:52.980000",
"db": "NVD",
"id": "CVE-2021-22759"
},
{
"date": "2021-04-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"date": "2021-06-16T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202106-601"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural \u00a0Schneider\u00a0Electric\u00a0 Product vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-001884"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
}
],
"trust": 0.6
}
}
GSD-2021-22759
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-22759",
"description": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.",
"id": "GSD-2021-22759"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-22759"
],
"details": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.",
"id": "GSD-2021-22759",
"modified": "2023-12-13T01:23:24.937487Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2021-22759",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IGSS Definition (Def.exe) V15.0.0.21140 and prior",
"version": {
"version_data": [
{
"version_value": "IGSS Definition (Def.exe) V15.0.0.21140 and prior"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-416: Use after free"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01",
"refsource": "MISC",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.0.0.21140",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cybersecurity@schneider-electric.com",
"ID": "CVE-2021-22759"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-06-15T19:03Z",
"publishedDate": "2021-06-11T16:15Z"
}
}
}
CVE-2021-22759
Vulnerability from csaf_se - Published: 2021-06-08 00:00 - Updated: 2021-06-08 00:00Summary
IGSS (Interactive Graphical SCADA System)
Notes
General Security Recommendations
We strongly recommend the following industry cybersecurity best practices.
https://www.se.com/us/en/download/document/7EN52-0390/
* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.
* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.
* Place all controllers in locked cabinets and never leave them in the “Program” mode.
* Never connect programming software to any network other than the network intended for that device.
* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.
* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.
* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.
* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.
For more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document.
For More Information
This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.
For further information related to cybersecurity in Schneider Electric’s products, visit the company’s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp
LEGAL DISCLAIMER
THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS “NOTIFICATION”) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN “AS-IS” BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION
About Schneider Electric
At Schneider, we believe access to energy and digital is a basic human right. We empower all to do more with less, ensuring Life Is On everywhere, for everyone, at every moment.
We provide energy and automation digital solutions for efficiency and sustainability. We combine world-leading energy technologies, real-time automation, software and services into integrated solutions for Homes, Buildings, Data Centers, Infrastructure and Industries.
We are committed to unleash the infinite possibilities of an open, global, innovative community that is passionate with our Meaningful Purpose, Inclusive and Empowered values.
www.se.com
Overview
Schneider Electric is aware of multiple vulnerabilities in the Interactive Graphical SCADA
System (IGSS) product.
The IGSS product is a state-of-the art SCADA system used for monitoring and controlling
industrial processes. IGSS communicates with all major industry standard PLC drivers.
Failure to apply the remediations provided below may risk remote code execution, which could
result in an attacker gaining access to the Windows Operating System on the machine used to
import CGF and WSP files, typically a step performed during system design time.
Overview
Customers should use appropriate patching methodologies when applying these patches to their systems. We strongly recommend the use of back-ups and evaluating the impact of these patches in a Test and Development environment or on an offline infrastructure. Contact Schneider Electric's Customer Care Center if you need assistance removing a patch.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "We strongly recommend the following industry cybersecurity best practices.\n\nhttps://www.se.com/us/en/download/document/7EN52-0390/\n* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.\n* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.\n* Place all controllers in locked cabinets and never leave them in the \u201cProgram\u201d mode.\n* Never connect programming software to any network other than the network intended for that device.\n* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.\n* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.\n* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.\n* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.\nFor more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document. \n",
"title": "General Security Recommendations"
},
{
"category": "general",
"text": "This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.\nFor further information related to cybersecurity in Schneider Electric\u2019s products, visit the company\u2019s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp",
"title": "For More Information"
},
{
"category": "legal_disclaimer",
"text": "THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS \u201cNOTIFICATION\u201d) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN \u201cAS-IS\u201d BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION",
"title": "LEGAL DISCLAIMER"
},
{
"category": "general",
"text": "At Schneider, we believe access to energy and digital is a basic human right. We empower all to do more with less, ensuring Life Is On everywhere, for everyone, at every moment.\n\nWe provide energy and automation digital solutions for efficiency and sustainability. We combine world-leading energy technologies, real-time automation, software and services into integrated solutions for Homes, Buildings, Data Centers, Infrastructure and Industries.\n\nWe are committed to unleash the infinite possibilities of an open, global, innovative community that is passionate with our Meaningful Purpose, Inclusive and Empowered values.\n\nwww.se.com ",
"title": "About Schneider Electric"
},
{
"category": "summary",
"text": "Schneider Electric is aware of multiple vulnerabilities in the Interactive Graphical SCADA \r\nSystem (IGSS) product. \r\nThe IGSS product is a state-of-the art SCADA system used for monitoring and controlling \r\nindustrial processes. IGSS communicates with all major industry standard PLC drivers. \r\nFailure to apply the remediations provided below may risk remote code execution, which could \r\nresult in an attacker gaining access to the Windows Operating System on the machine used to \r\nimport CGF and WSP files, typically a step performed during system design time.",
"title": "Overview"
},
{
"category": "summary",
"text": "Customers should use appropriate patching methodologies when applying these patches to their systems. We strongly recommend the use of back-ups and evaluating the impact of these patches in a Test and Development environment or on an offline infrastructure. Contact Schneider Electric\u0027s Customer Care Center if you need assistance removing a patch. ",
"title": "Overview"
}
],
"publisher": {
"category": "vendor",
"contact_details": "cpcert@se.com",
"name": "Schneider Electric CPCERT",
"namespace": "https://www.se.com/ww/en/work/support/cybersecurity/security-notifications.jsp"
},
"references": [
{
"category": "self",
"summary": "IGSS (Interactive Graphical SCADA System) - SEVD-2021-159-01 PDF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2021-159-01_IGSS_Security_Notification.pdf"
},
{
"category": "self",
"summary": "IGSS (Interactive Graphical SCADA System) - SEVD-2021-159-01 CSAF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=sevd-2021-159-01.json"
},
{
"category": "external",
"summary": "Recommended Cybersecurity Best Practices",
"url": "https://www.se.com/us/en/download/document/7EN52-0390/"
}
],
"title": "IGSS (Interactive Graphical SCADA System)",
"tracking": {
"current_release_date": "2021-06-08T00:00:00.000Z",
"generator": {
"date": "2021-06-08T00:00:00.000Z",
"engine": {
"name": "Schneider Electric CSAF Generator",
"version": "1.2"
}
},
"id": "SEVD-2021-159-01",
"initial_release_date": "2021-06-08T00:00:00.000Z",
"revision_history": [
{
"date": "2021-06-08T00:00:00.000Z",
"number": "1.0.0",
"summary": "Original Release"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=15.0.0.21041",
"product": {
"name": "Schneider Electric IGSS Definition (Def.exe) V15.0.0.21041 and prior",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "IGSS Definition (Def.exe)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=15.0.0.21140",
"product": {
"name": "Schneider Electric IGSS Definition (Def.exe) V15.0.0.21140 and prior",
"product_id": "2"
}
}
],
"category": "product_name",
"name": "IGSS Definition (Def.exe)"
},
{
"branches": [
{
"category": "product_version",
"name": "15.0.0.21141",
"product": {
"name": "Schneider Electric IGSS Definition module: Def.exe Version 15.0.0.21141",
"product_id": "3"
}
}
],
"category": "product_name",
"name": "IGSS Definition module: Def.exe"
}
],
"category": "vendor",
"name": "Schneider Electric"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"kimiya"
],
"organization": "Trend Micro\u0027s Zero Day Initiative"
}
],
"cve": "CVE-2021-22750",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "CWE-787: Out-of-bounds write vulnerability exists that could result in loss of data or remote \r\ncode execution due to missing length checks, when a malicious CGF file is imported to IGSS \r\nDefinition.\r\n",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"1"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"1"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-22750"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22751",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "CWE-787: Out-of-bounds write vulnerability exists that could result in disclosure of information \r\nor execution of arbitrary code due to lack of input validation, when a malicious CGF \r\n(Configuration Group File) file is imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22751"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
},
{
"names": [
"kimiya"
],
"organization": "Trend Micro\u0027s Zero Day Initiative"
}
],
"cve": "CVE-2021-22752",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "CWE-787: Out-of-bounds write vulnerability exists that could result in loss of data or remote \r\ncode execution due to missing size checks, when a malicious WSP (Workspace) file is being \r\nparsed by IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22752"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
},
{
"names": [
"kimiya"
],
"organization": "Trend Micro\u0027s Zero Day Initiative"
}
],
"cve": "CVE-2021-22753",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "CWE-125: Out-of-bounds read vulnerability exists that could result in loss of data or remote \r\ncode execution due to missing length checks, when a malicious WSP file is being parsed by \r\nIGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22753"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22754",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "CWE-787: Out-of-bounds write vulnerability exists that could result in loss of data or remote \r\ncode execution due to lack of proper validation of user-supplied data, when a malicious CGF file \r\nis imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22754"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22755",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "CWE-787: Out-of-bounds write vulnerability exists that could result in disclosure of information \r\nor remote code execution due to lack of sanity checks on user-supplied data, when a malicious \r\nCGF file is imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22755"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22756",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "CWE-125: Out-of-bounds read vulnerability exists that could result in disclosure of information \r\nor remote code execution due to lack of user-supplied data validation, when a malicious CGF \r\nfile is imported to IGSS Definition.\r\n",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22756"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22757",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "CWE-125: Out-of-bounds read vulnerability exists that could result in disclosure of information \r\nor remote code execution due to lack of sanity checks on user-supplied input data, when a \r\nmalicious CGF file is imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22757"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22758",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"notes": [
{
"category": "description",
"text": "CWE-824: Access of uninitialized pointer vulnerability exists that could result in loss of data or \r\nremote code execution due to lack validation of user-supplied input data, when a malicious CGF \r\nfile is imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22758"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22759",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "CWE-416: Use after free vulnerability exists that could result in loss of data or remote code \r\nexecution due to use of unchecked input data, when a malicious CGF file is imported to IGSS \r\nDefinition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22759"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
}
],
"cve": "CVE-2021-22760",
"cwe": {
"id": "CWE-763",
"name": "Release of Invalid Pointer or Reference"
},
"notes": [
{
"category": "description",
"text": "CWE-763: Release of invalid pointer or reference vulnerability exists that could result in loss \r\nof data or remote code execution due to missing checks of user-supplied input data, when a \r\nmalicious CGF file is imported to IGSS Definition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22760"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
},
{
"names": [
"kimiya"
],
"organization": "Trend Micro\u0027s Zero Day Initiative"
}
],
"cve": "CVE-2021-22761",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer \r\nvulnerability exists that could result in disclosure of information or remote code execution due to \r\nmissing length check on user supplied data, when a malicious CGF file is imported to IGSS \r\nDefinition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22761"
},
{
"acknowledgments": [
{
"names": [
"Michael Heinzl"
]
},
{
"names": [
"kimiya"
],
"organization": "Trend Micro\u0027s Zero Day Initiative"
}
],
"cve": "CVE-2021-22762",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "description",
"text": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability exists that could result \r\nin remote code execution, when a malicious CGF or WSP file is being parsed by IGSS \r\nDefinition. \r\n",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"3"
],
"known_affected": [
"2"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these \r\nvulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software or \r\nhere: \r\nhttps://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately \r\napply the following mitigations to reduce the risk of exploit: \r\n\u2022 Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
}
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2021-22762"
}
]
}
FKIE_CVE-2021-22759
Vulnerability from fkie_nvd - Published: 2021-06-11 16:15 - Updated: 2024-11-21 05:50
Severity ?
Summary
A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| schneider-electric | interactive_graphical_scada_system | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C5AD9202-97A9-4975-8307-5CCAEBF75A0C",
"versionEndIncluding": "15.0.0.21140",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition."
},
{
"lang": "es",
"value": "Un CWE-416: Se presenta una vulnerabilidad de uso de memoria previamente liberada en IGSS Definition (Def.exe) versiones V15.0.0.21140 y anteriores, que podr\u00eda resultar en la p\u00e9rdida de datos o una ejecuci\u00f3n de c\u00f3digo remota debido al uso de datos de entrada no comprobados, cuando es importado un archivo CGF malicioso a IGSS Definition"
}
],
"id": "CVE-2021-22759",
"lastModified": "2024-11-21T05:50:36.687",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-06-11T16:15:10.087",
"references": [
{
"source": "cybersecurity@se.com",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"sourceIdentifier": "cybersecurity@se.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
],
"source": "cybersecurity@se.com",
"type": "Secondary"
}
]
}
GHSA-JV76-23H2-C485
Vulnerability from github – Published: 2022-05-24 19:05 – Updated: 2022-05-24 19:05
VLAI?
Details
A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.
{
"affected": [],
"aliases": [
"CVE-2021-22759"
],
"database_specific": {
"cwe_ids": [
"CWE-416"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-06-11T16:15:00Z",
"severity": "HIGH"
},
"details": "A CWE-416: Use after free vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition.",
"id": "GHSA-jv76-23h2-c485",
"modified": "2022-05-24T19:05:03Z",
"published": "2022-05-24T19:05:03Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22759"
},
{
"type": "WEB",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"schema_version": "1.4.0",
"severity": []
}
CNVD-2021-42150
Vulnerability from cnvd - Published: 2021-06-16
VLAI Severity ?
Title
Interactive Graphical SCADA System (IGSS)释放后重用漏洞
Description
Schneider Electric Interactive Graphical SCADA System (IGSS)是用于监测和控制工业过程的先进的SCADA系统。
Interactive Graphical SCADA System (IGSS) 15.0.0.21140及更早版本的Definition模块存在释放后重用漏洞。该漏洞源于在将恶意CGF文件导入IGSS Definition模块时会使用未经检查的输入数据。攻击者可利用该漏洞获取数据或实现远程代码执行。
Severity
中
Patch Name
Interactive Graphical SCADA System (IGSS)释放后重用漏洞的补丁
Patch Description
Schneider Electric Interactive Graphical SCADA System (IGSS)是用于监测和控制工业过程的先进的SCADA系统。
Interactive Graphical SCADA System (IGSS) 15.0.0.21140及更早版本的Definition模块存在释放后重用漏洞。该漏洞源于在将恶意CGF文件导入IGSS Definition模块时会使用未经检查的输入数据。攻击者可利用该漏洞获取数据或实现远程代码执行。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://us-cert.cisa.gov/ics/advisories/icsa-21-159-04
Reference
https://us-cert.cisa.gov/ics/advisories/icsa-21-159-04
Impacted products
| Name | Schneider Electric Interactive Graphical SCADA System (IGSS) <=15.0.0.21140 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2021-22759",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-22759"
}
},
"description": "Schneider Electric Interactive Graphical SCADA System (IGSS)\u662f\u7528\u4e8e\u76d1\u6d4b\u548c\u63a7\u5236\u5de5\u4e1a\u8fc7\u7a0b\u7684\u5148\u8fdb\u7684SCADA\u7cfb\u7edf\u3002\n\nInteractive Graphical SCADA System (IGSS) 15.0.0.21140\u53ca\u66f4\u65e9\u7248\u672c\u7684Definition\u6a21\u5757\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728\u5c06\u6076\u610fCGF\u6587\u4ef6\u5bfc\u5165IGSS Definition\u6a21\u5757\u65f6\u4f1a\u4f7f\u7528\u672a\u7ecf\u68c0\u67e5\u7684\u8f93\u5165\u6570\u636e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6570\u636e\u6216\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://us-cert.cisa.gov/ics/advisories/icsa-21-159-04",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2021-42150",
"openTime": "2021-06-16",
"patchDescription": "Schneider Electric Interactive Graphical SCADA System (IGSS)\u662f\u7528\u4e8e\u76d1\u6d4b\u548c\u63a7\u5236\u5de5\u4e1a\u8fc7\u7a0b\u7684\u5148\u8fdb\u7684SCADA\u7cfb\u7edf\u3002\r\n\r\nInteractive Graphical SCADA System (IGSS) 15.0.0.21140\u53ca\u66f4\u65e9\u7248\u672c\u7684Definition\u6a21\u5757\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728\u5c06\u6076\u610fCGF\u6587\u4ef6\u5bfc\u5165IGSS Definition\u6a21\u5757\u65f6\u4f1a\u4f7f\u7528\u672a\u7ecf\u68c0\u67e5\u7684\u8f93\u5165\u6570\u636e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6570\u636e\u6216\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Interactive Graphical SCADA System (IGSS)\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Schneider Electric Interactive Graphical SCADA System (IGSS) \u003c=15.0.0.21140"
},
"referenceLink": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-04",
"serverity": "\u4e2d",
"submitTime": "2021-06-09",
"title": "Interactive Graphical SCADA System (IGSS)\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e"
}
CERTFR-2021-AVI-443
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Schneider Electric. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Schneider Electric | N/A | Modicon X80 BMXNOR0200H RTU versions antérieures à SV1.70 IR22 | ||
| Schneider Electric | N/A | module Definition de IGSS (Interactive Graphical SCADA System) versions antérieures à 15.0.0.21141 | ||
| Schneider Electric | N/A | PowerLogic PM5560 et PM5563 versions antérieures à V2.7.8 | ||
| Schneider Electric | N/A | PowerLogic PM5561 et PM5562 versions antérieures à V2.5.4 | ||
| Schneider Electric | N/A | PowerLogic EGX100 et EGX300 (produits en fin de vie, aucun correctif n'est prévu) | ||
| Schneider Electric | N/A | PowerLogic PM8ECC toutes versions (produit en fin de vie, aucun correctif n'est prévu) | ||
| Schneider Electric | N/A | Enerlin’X Com’X versions antérieures à V6.8.4 | ||
| Schneider Electric | N/A | les produits Schneider Electric utilisant RockWell ISaGRAF (se référer au bulletin de sécurité SEVD-2021-159-04 de l'éditeur, cf. section Documentation) |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Modicon X80 BMXNOR0200H RTU versions ant\u00e9rieures \u00e0 SV1.70 IR22",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "module Definition de IGSS (Interactive Graphical SCADA System) versions ant\u00e9rieures \u00e0 15.0.0.21141",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM5560 et PM5563 versions ant\u00e9rieures \u00e0 V2.7.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM5561 et PM5562 versions ant\u00e9rieures \u00e0 V2.5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic EGX100 et EGX300 (produits en fin de vie, aucun correctif n\u0027est pr\u00e9vu)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM8ECC toutes versions (produit en fin de vie, aucun correctif n\u0027est pr\u00e9vu)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Enerlin\u2019X Com\u2019X versions ant\u00e9rieures \u00e0 V6.8.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "les produits Schneider Electric utilisant RockWell ISaGRAF (se r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 SEVD-2021-159-04 de l\u0027\u00e9diteur, cf. section Documentation)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-22753",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22753"
},
{
"name": "CVE-2021-22750",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22750"
},
{
"name": "CVE-2021-22763",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22763"
},
{
"name": "CVE-2021-22767",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22767"
},
{
"name": "CVE-2021-22754",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22754"
},
{
"name": "CVE-2021-22756",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22756"
},
{
"name": "CVE-2021-22765",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22765"
},
{
"name": "CVE-2021-22755",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22755"
},
{
"name": "CVE-2020-25176",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25176"
},
{
"name": "CVE-2021-22764",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22764"
},
{
"name": "CVE-2020-25178",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25178"
},
{
"name": "CVE-2021-22768",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22768"
},
{
"name": "CVE-2021-22749",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22749"
},
{
"name": "CVE-2021-22752",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22752"
},
{
"name": "CVE-2021-22760",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22760"
},
{
"name": "CVE-2020-25180",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25180"
},
{
"name": "CVE-2021-22766",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22766"
},
{
"name": "CVE-2021-22761",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22761"
},
{
"name": "CVE-2021-22758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22758"
},
{
"name": "CVE-2021-22769",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22769"
},
{
"name": "CVE-2020-25184",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25184"
},
{
"name": "CVE-2021-22759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22759"
},
{
"name": "CVE-2021-22751",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22751"
},
{
"name": "CVE-2021-22757",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22757"
},
{
"name": "CVE-2021-22762",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22762"
},
{
"name": "CVE-2020-25182",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25182"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-443",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-06-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans\u00a0les produits\nSchneider Electric. Certaines d\u0027entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider Electric",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-03 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-04 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-05 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-05"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-01 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-02 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-06 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-06"
}
]
}
CERTFR-2021-AVI-443
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Schneider Electric. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Schneider Electric | N/A | Modicon X80 BMXNOR0200H RTU versions antérieures à SV1.70 IR22 | ||
| Schneider Electric | N/A | module Definition de IGSS (Interactive Graphical SCADA System) versions antérieures à 15.0.0.21141 | ||
| Schneider Electric | N/A | PowerLogic PM5560 et PM5563 versions antérieures à V2.7.8 | ||
| Schneider Electric | N/A | PowerLogic PM5561 et PM5562 versions antérieures à V2.5.4 | ||
| Schneider Electric | N/A | PowerLogic EGX100 et EGX300 (produits en fin de vie, aucun correctif n'est prévu) | ||
| Schneider Electric | N/A | PowerLogic PM8ECC toutes versions (produit en fin de vie, aucun correctif n'est prévu) | ||
| Schneider Electric | N/A | Enerlin’X Com’X versions antérieures à V6.8.4 | ||
| Schneider Electric | N/A | les produits Schneider Electric utilisant RockWell ISaGRAF (se référer au bulletin de sécurité SEVD-2021-159-04 de l'éditeur, cf. section Documentation) |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Modicon X80 BMXNOR0200H RTU versions ant\u00e9rieures \u00e0 SV1.70 IR22",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "module Definition de IGSS (Interactive Graphical SCADA System) versions ant\u00e9rieures \u00e0 15.0.0.21141",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM5560 et PM5563 versions ant\u00e9rieures \u00e0 V2.7.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM5561 et PM5562 versions ant\u00e9rieures \u00e0 V2.5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic EGX100 et EGX300 (produits en fin de vie, aucun correctif n\u0027est pr\u00e9vu)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "PowerLogic PM8ECC toutes versions (produit en fin de vie, aucun correctif n\u0027est pr\u00e9vu)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Enerlin\u2019X Com\u2019X versions ant\u00e9rieures \u00e0 V6.8.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "les produits Schneider Electric utilisant RockWell ISaGRAF (se r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 SEVD-2021-159-04 de l\u0027\u00e9diteur, cf. section Documentation)",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-22753",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22753"
},
{
"name": "CVE-2021-22750",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22750"
},
{
"name": "CVE-2021-22763",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22763"
},
{
"name": "CVE-2021-22767",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22767"
},
{
"name": "CVE-2021-22754",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22754"
},
{
"name": "CVE-2021-22756",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22756"
},
{
"name": "CVE-2021-22765",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22765"
},
{
"name": "CVE-2021-22755",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22755"
},
{
"name": "CVE-2020-25176",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25176"
},
{
"name": "CVE-2021-22764",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22764"
},
{
"name": "CVE-2020-25178",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25178"
},
{
"name": "CVE-2021-22768",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22768"
},
{
"name": "CVE-2021-22749",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22749"
},
{
"name": "CVE-2021-22752",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22752"
},
{
"name": "CVE-2021-22760",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22760"
},
{
"name": "CVE-2020-25180",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25180"
},
{
"name": "CVE-2021-22766",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22766"
},
{
"name": "CVE-2021-22761",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22761"
},
{
"name": "CVE-2021-22758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22758"
},
{
"name": "CVE-2021-22769",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22769"
},
{
"name": "CVE-2020-25184",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25184"
},
{
"name": "CVE-2021-22759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22759"
},
{
"name": "CVE-2021-22751",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22751"
},
{
"name": "CVE-2021-22757",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22757"
},
{
"name": "CVE-2021-22762",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22762"
},
{
"name": "CVE-2020-25182",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25182"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-443",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-06-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans\u00a0les produits\nSchneider Electric. Certaines d\u0027entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider Electric",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-03 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-04 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-05 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-05"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-01 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-02 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2021-159-06 du 08 juin 2021",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-06"
}
]
}
ICSA-21-159-04
Vulnerability from csaf_cisa - Published: 2021-06-08 00:00 - Updated: 2021-06-08 00:00Summary
Schneider Electric IGSS
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation
Successful exploitation of these vulnerabilities may result in remote code execution, which could result in an attacker gaining access to the Windows Operating System on the machine used to import CGF and WSP files.
Critical infrastructure sectors
Commercial Facilities, Critical Manufacturing, Energy
Countries/areas deployed
Worldwide
Company headquarters location
France
Recommended Practices
CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:
Recommended Practices
CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
CISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.
Recommended Practices
CISA also recommends users take the following measures to protect themselves from social engineering attacks:
Exploitability
No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.
{
"document": {
"acknowledgments": [
{
"names": [
"Kimiya"
],
"organization": "Trend Micro \u0027s Zero Day Initiative, and Michael Heinzl separately",
"summary": "reporting these vulnerabilities to CISA"
},
{
"names": [
"Michael Heinzl"
],
"summary": "separately reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities may result in remote code execution, which could result in an attacker gaining access to the Windows Operating System on the machine used to import CGF and WSP files.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Commercial Facilities, Critical Manufacturing, Energy",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "France",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks:",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities. These vulnerabilities are not exploitable remotely.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-21-159-04 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-159-04.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-21-159-04 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-159-04"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ncas/tips/ST04-014"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Schneider Electric IGSS",
"tracking": {
"current_release_date": "2021-06-08T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-21-159-04",
"initial_release_date": "2021-06-08T00:00:00.000000Z",
"revision_history": [
{
"date": "2021-06-08T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-21-159-04 Schneider Electric IGSS"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.0.0.21140",
"product": {
"name": "IGSS Definition (Def.exe): v15.0.0.21140 and prior",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "IGSS Definition (Def.exe)"
}
],
"category": "vendor",
"name": "Schneider Electric Software, LLC"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-22750",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to missing length checks when a malicious CGF file is imported to IGSS Definition.CVE-2021-22750 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22750"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22751",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in disclosure of information or execution of arbitrary code due to lack of input validation when a malicious CGF (Configuration Group File) is imported to IGSS Definition.CVE-2021-22751 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22751"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22752",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to missing size checks when a malicious WSP (Workspace) file is being parsed by IGSS Definition.CVE-2021-22752 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22752"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22753",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to missing length checks when a malicious WSP file is being parsed by IGSS Definition.CVE-2021-22753 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22753"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22754",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to lack of proper validation of user-supplied data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22754 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22754"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22755",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in disclosure of information or remote code execution due to lack of sanity checks on user-supplied data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22755 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22755"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22756",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in disclosure of information or remote code execution due to lack of user-supplied data validation when a malicious CGF file is imported to IGSS Definition.CVE-2021-22756 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22756"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22757",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in disclosure of information or remote code execution due to lack of validation on user-supplied input data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22757 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22757"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22758",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to lack of validation of user-supplied input data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22758 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22758"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22759",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to use of unchecked input data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22759 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22759"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22760",
"cwe": {
"id": "CWE-763",
"name": "Release of Invalid Pointer or Reference"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in loss of data or remote code execution due to missing checks of user-supplied input data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22760 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22760"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22761",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in disclosure of information or remote code execution due to missing length check on user supplied data when a malicious CGF file is imported to IGSS Definition.CVE-2021-22761 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22761"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2021-22762",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Exploitation of this vulnerability could result in remote code execution when a malicious CGF or WSP file is being parsed by IGSS Definition.CVE-2021-22762 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22762"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends users update to Version 15.0.0.21141 of the IGSS Definition module: Def.exe includes fixes for these vulnerabilities and is available for download through IGSS Master \u003e Update IGSS Software, or at the link above.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://igss.schneider-electric.com/igss/igssupdates/v150/IGSSUPDATE.ZIP"
},
{
"category": "mitigation",
"details": "If users choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploitation:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Avoid importing CGF and WSP files from untrusted sources.",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "mitigation",
"details": "Please see Schneider Electric\u0027s publication SEVD-2021-159-01 for more information.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…