Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for Automation Studio by B&R

    CVE-2019-19102 (GCVE-0-2019-19102)

    Vulnerability from nvd – Published: 2020-04-29 02:07 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Zip Slip vulnerability in 3rd-Party library in B&R Automation Studio upgrade service
    Summary
    A directory traversal vulnerability in SharpZipLib used in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip.
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.123Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A directory traversal vulnerability in SharpZipLib used in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:07:47.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Zip Slip vulnerability in 3rd-Party library in  B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19102",
              "STATE": "PUBLIC",
              "TITLE": "Zip Slip vulnerability in 3rd-Party library in  B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A directory traversal vulnerability in SharpZipLib used in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19102",
        "datePublished": "2020-04-29T02:07:47.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.123Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-19101 (GCVE-0-2019-19101)

    Vulnerability from nvd – Published: 2020-04-29 02:07 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Incomplete communication encryption and validation in B&R Automation Studio upgrade service
    Summary
    A missing secure communication definition and an incomplete TLS validation in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, < 4.3.11SP, < 4.4.9SP, < 4.5.5SP, < 4.6.4 and < 4.7.2 enable unauthenticated users to perform MITM attacks via the B&R upgrade server.
    CWE
    • CWE-326 - Inadequate Encryption Strength
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Affected: < 4.3.11SP
    Affected: < 4.4.9SP
    Affected: < 4.5.5SP
    Affected: < 4.6.3SP
    Affected: < 4.7.2
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.436Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.3.11SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.4.9SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.5.5SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.6.3SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.7.2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A missing secure communication definition and an incomplete TLS validation in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.5SP, \u003c 4.6.4 and \u003c 4.7.2 enable unauthenticated users to perform MITM attacks via the B\u0026R upgrade server."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-326",
                  "description": "CWE-326 Inadequate Encryption Strength",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:07:31.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incomplete communication encryption and validation in B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19101",
              "STATE": "PUBLIC",
              "TITLE": "Incomplete communication encryption and validation in B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              },
                              {
                                "version_value": "\u003c 4.3.11SP"
                              },
                              {
                                "version_value": "\u003c 4.4.9SP"
                              },
                              {
                                "version_value": "\u003c 4.5.5SP"
                              },
                              {
                                "version_value": "\u003c 4.6.3SP"
                              },
                              {
                                "version_value": "\u003c 4.7.2"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A missing secure communication definition and an incomplete TLS validation in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.5SP, \u003c 4.6.4 and \u003c 4.7.2 enable unauthenticated users to perform MITM attacks via the B\u0026R upgrade server."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-326 Inadequate Encryption Strength"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19101",
        "datePublished": "2020-04-29T02:07:32.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.436Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-19100 (GCVE-0-2019-19100)

    Vulnerability from nvd – Published: 2020-04-29 02:09 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Privilege escalation via B&R Automation Studio upgrade service
    Summary
    A privilege escalation vulnerability in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, < 4.3.11SP, < 4.4.9SP, < 4.5.4SP, <. 4.6.3SP, < 4.7.2 and < 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface.
    CWE
    • CWE-264 - Permissions, Privileges, and Access Controls
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Affected: < 4.3.11SP
    Affected: < 4.4.9SP
    Affected: < 4.5.4SP
    Affected: < 4.6.3SP
    Affected: < 4.7.2
    Affected: < 4.8.1
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.275Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.3.11SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.4.9SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.5.4SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.6.3SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.7.2"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.8.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A privilege escalation vulnerability in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.4SP, \u003c. 4.6.3SP, \u003c 4.7.2 and \u003c 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-264",
                  "description": "CWE-264 Permissions, Privileges, and Access Controls",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:09:21.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Privilege escalation via B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19100",
              "STATE": "PUBLIC",
              "TITLE": "Privilege escalation via B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              },
                              {
                                "version_value": "\u003c 4.3.11SP"
                              },
                              {
                                "version_value": "\u003c 4.4.9SP"
                              },
                              {
                                "version_value": "\u003c 4.5.4SP"
                              },
                              {
                                "version_value": "\u003c 4.6.3SP"
                              },
                              {
                                "version_value": "\u003c 4.7.2"
                              },
                              {
                                "version_value": "\u003c 4.8.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A privilege escalation vulnerability in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.4SP, \u003c. 4.6.3SP, \u003c 4.7.2 and \u003c 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-264 Permissions, Privileges, and Access Controls"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19100",
        "datePublished": "2020-04-29T02:09:21.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.275Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-19100 (GCVE-0-2019-19100)

    Vulnerability from cvelistv5 – Published: 2020-04-29 02:09 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Privilege escalation via B&R Automation Studio upgrade service
    Summary
    A privilege escalation vulnerability in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, < 4.3.11SP, < 4.4.9SP, < 4.5.4SP, <. 4.6.3SP, < 4.7.2 and < 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface.
    CWE
    • CWE-264 - Permissions, Privileges, and Access Controls
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Affected: < 4.3.11SP
    Affected: < 4.4.9SP
    Affected: < 4.5.4SP
    Affected: < 4.6.3SP
    Affected: < 4.7.2
    Affected: < 4.8.1
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.275Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.3.11SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.4.9SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.5.4SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.6.3SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.7.2"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.8.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A privilege escalation vulnerability in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.4SP, \u003c. 4.6.3SP, \u003c 4.7.2 and \u003c 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-264",
                  "description": "CWE-264 Permissions, Privileges, and Access Controls",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:09:21.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Privilege escalation via B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19100",
              "STATE": "PUBLIC",
              "TITLE": "Privilege escalation via B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              },
                              {
                                "version_value": "\u003c 4.3.11SP"
                              },
                              {
                                "version_value": "\u003c 4.4.9SP"
                              },
                              {
                                "version_value": "\u003c 4.5.4SP"
                              },
                              {
                                "version_value": "\u003c 4.6.3SP"
                              },
                              {
                                "version_value": "\u003c 4.7.2"
                              },
                              {
                                "version_value": "\u003c 4.8.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A privilege escalation vulnerability in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.4SP, \u003c. 4.6.3SP, \u003c 4.7.2 and \u003c 4.8.1 allow authenticated users to delete arbitrary files via an exposed interface."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-264 Permissions, Privileges, and Access Controls"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19100",
        "datePublished": "2020-04-29T02:09:21.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.275Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-19102 (GCVE-0-2019-19102)

    Vulnerability from cvelistv5 – Published: 2020-04-29 02:07 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Zip Slip vulnerability in 3rd-Party library in B&R Automation Studio upgrade service
    Summary
    A directory traversal vulnerability in SharpZipLib used in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip.
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.123Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A directory traversal vulnerability in SharpZipLib used in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:07:47.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Zip Slip vulnerability in 3rd-Party library in  B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19102",
              "STATE": "PUBLIC",
              "TITLE": "Zip Slip vulnerability in 3rd-Party library in  B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A directory traversal vulnerability in SharpZipLib used in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allow unauthenticated users to write to certain local directories. The vulnerability is also known as zip slip."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19102",
        "datePublished": "2020-04-29T02:07:47.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.123Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-19101 (GCVE-0-2019-19101)

    Vulnerability from cvelistv5 – Published: 2020-04-29 02:07 – Updated: 2024-08-05 02:09
    VLAI
    Title
    Incomplete communication encryption and validation in B&R Automation Studio upgrade service
    Summary
    A missing secure communication definition and an incomplete TLS validation in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, < 4.3.11SP, < 4.4.9SP, < 4.5.5SP, < 4.6.4 and < 4.7.2 enable unauthenticated users to perform MITM attacks via the B&R upgrade server.
    CWE
    • CWE-326 - Inadequate Encryption Strength
    Assigner
    ABB
    References
    Impacted products
    Vendor Product Version
    B&R Automation Studio Affected: 4.0.x
    Affected: 4.1.x
    Affected: 4.2.x
    Affected: < 4.3.11SP
    Affected: < 4.4.9SP
    Affected: < 4.5.5SP
    Affected: < 4.6.3SP
    Affected: < 4.7.2
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T02:09:39.436Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Automation Studio",
              "vendor": "B\u0026R",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0.x"
                },
                {
                  "status": "affected",
                  "version": "4.1.x"
                },
                {
                  "status": "affected",
                  "version": "4.2.x"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.3.11SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.4.9SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.5.5SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.6.3SP"
                },
                {
                  "status": "affected",
                  "version": "\u003c 4.7.2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A missing secure communication definition and an incomplete TLS validation in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.5SP, \u003c 4.6.4 and \u003c 4.7.2 enable unauthenticated users to perform MITM attacks via the B\u0026R upgrade server."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-326",
                  "description": "CWE-326 Inadequate Encryption Strength",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-04-29T02:07:31.000Z",
            "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
            "shortName": "ABB"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incomplete communication encryption and validation in B\u0026R Automation Studio upgrade service",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cybersecurity@ch.abb.com",
              "ID": "CVE-2019-19101",
              "STATE": "PUBLIC",
              "TITLE": "Incomplete communication encryption and validation in B\u0026R Automation Studio upgrade service"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Automation Studio",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "4.0.x"
                              },
                              {
                                "version_value": "4.1.x"
                              },
                              {
                                "version_value": "4.2.x"
                              },
                              {
                                "version_value": "\u003c 4.3.11SP"
                              },
                              {
                                "version_value": "\u003c 4.4.9SP"
                              },
                              {
                                "version_value": "\u003c 4.5.5SP"
                              },
                              {
                                "version_value": "\u003c 4.6.3SP"
                              },
                              {
                                "version_value": "\u003c 4.7.2"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "B\u0026R"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A missing secure communication definition and an incomplete TLS validation in the upgrade service in B\u0026R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, \u003c 4.3.11SP, \u003c 4.4.9SP, \u003c 4.5.5SP, \u003c 4.6.4 and \u003c 4.7.2 enable unauthenticated users to perform MITM attacks via the B\u0026R upgrade server."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-326 Inadequate Encryption Strength"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/",
                  "refsource": "CONFIRM",
                  "url": "https://www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "assignerShortName": "ABB",
        "cveId": "CVE-2019-19101",
        "datePublished": "2020-04-29T02:07:32.000Z",
        "dateReserved": "2019-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-05T02:09:39.436Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }