CVE-2021-42797 - Vulnerability Details - OpenCVE

Path traversal vulnerability in AVEVA Edge (formerly InduSoft Web Studio) versions R2020 and prior allows an unauthenticated user to steal the Windows access token of the user account configured for accessing external DB resources.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Aveva	Edge

Configuration 1 [-]

OR	cpe:2.3:a:aveva:edge::::::::
	cpe:2.3:a:aveva:edge:2020:-::::::
	cpe:2.3:a:aveva:edge:2020:r2:-:::::*
	cpe:2.3:a:aveva:edge:2020:r2:sp1:::::*

No data.

References

Link	Providers
https://www.aveva.com/en/products/edge/
https://www.cisa.gov/news-events/ics-advisories/icsa-22-326-01

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-16T00:00:00

Updated: 2024-08-04T03:38:50.223Z

Reserved: 2021-10-21T00:00:00

Link: CVE-2021-42797

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-12-16T01:15:07.587

Modified: 2024-11-21T06:28:11.290

Link: CVE-2021-42797

Redhat

No data.

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:aveva:edge:*:*:*:*:*:*:*:*", "matchCriteriaId": "1838ED5C-E082-4087-A55D-8038A308510C", "versionEndExcluding": "2020", "vulnerable": true}, {"criteria": "cpe:2.3:a:aveva:edge:2020:-:*:*:*:*:*:*", "matchCriteriaId": "AF8F7975-0BF0-446E-A33C-306D9045BE5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:aveva:edge:2020:r2:-:*:*:*:*:*", "matchCriteriaId": "F6A6358A-9F55-452A-8378-5BF05473EDFA", "vulnerable": true}, {"criteria": "cpe:2.3:a:aveva:edge:2020:r2:sp1:*:*:*:*:*", "matchCriteriaId": "D5080C65-4773-4AF2-B385-9FD02BAD5237", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Path traversal vulnerability in AVEVA Edge (formerly InduSoft Web Studio) versions R2020 and prior allows an unauthenticated user to steal the Windows access token of the user account configured for accessing external DB resources."}, {"lang": "es", "value": "Vulnerabilidad de path traversal en las versiones R2020 y anteriores de AVEVA Edge (anteriormente InduSoft Web Studio) permite que un usuario no autenticado robe el token de acceso de Windows de la cuenta de usuario configurada para acceder a recursos de base de datos externos."}], "id": "CVE-2021-42797", "lastModified": "2024-11-21T06:28:11.290", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-12-16T01:15:07.587", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "https://www.aveva.com/en/products/edge/"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-326-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://www.aveva.com/en/products/edge/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-326-01"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}