Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-0984 (GCVE-0-2015-0984)
Vulnerability from cvelistv5 – Published: 2015-03-31 01:00 – Updated: 2024-08-06 04:26
VLAI
EPSS
Summary
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02 | x_refsource_MISC |
| http://seclists.org/fulldisclosure/2015/Apr/79 | mailing-listx_refsource_FULLDISC |
| https://www.outpost24.com/hacking-industrial-cont… | x_refsource_MISC |
Date Public
2015-03-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T04:26:11.564Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"name": "20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-03-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2015-06-02T14:57:00.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"name": "20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2015-0984",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"name": "20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"name": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/",
"refsource": "MISC",
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2015-0984",
"datePublished": "2015-03-31T01:00:00.000Z",
"dateReserved": "2015-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-06T04:26:11.564Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2015-0984",
"date": "2026-05-30",
"epss": "0.00771",
"percentile": "0.73848"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2015-0984\",\"sourceIdentifier\":\"ics-cert@hq.dhs.gov\",\"published\":\"2015-03-31T01:59:36.910\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de salto de directorio en el servidor FTP en los controladores Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, y XL1000C1000U 600 I/O UUKL anterior a 2.04.01 permite a atacantes remotos leer ficheros bajo el root web, y como consecuencia obtener acceso al inicio de sesi\u00f3n de administraci\u00f3n, a trav\u00e9s de un nombre de ruta manipulado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c100_104_i\\\\/o:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"FE5182E3-F29B-4FEB-AA2E-2331A2E3C384\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\\\/o:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"196A505A-448A-4A5E-B62B-B8C38DF015E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\\\/o_uukl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"A90BD7C0-CF26-43A8-AB05-8B742ABE361E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c100u_104_i\\\\/o_uukl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"627A410D-99BB-4718-A3CC-BECF5D9833B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c50_52_i\\\\/o:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"B79D656C-25CC-4612-BB3D-489A0D49E805\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\\\/o:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"299F6D4F-8DA5-4846-BCE2-FAE0C8BE087C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\\\/o_uukl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"5BB3D695-B243-415F-A800-DA5B7011A5BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:honeywell:excel_web_xl_1000c50u_52_i\\\\/o_uukl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.04.00\",\"matchCriteriaId\":\"37AEF6D2-8E68-4298-B768-A33CCF787C32\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/fulldisclosure/2015/Apr/79\",\"source\":\"ics-cert@hq.dhs.gov\"},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Exploit\"]},{\"url\":\"http://seclists.org/fulldisclosure/2015/Apr/79\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]}],\"evaluatorComment\":\"Further research has revealed that this vulnerability allows authenticated shell access as an administrator. The score has been updated to properly reflect this.\"}}"
}
}
Title
Уязвимость микропрограммного обеспечения программируемых логических контроллеров Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, XL1000C1000U 600 I/O UUKL, позволяющая нарушителю читать файлы при веб-доступе и получить привилегии администратора системы
Description
Уязвимость FTP-сервера микропрограммного обеспечения программируемых логических контроллеров Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, XL1000C1000U 600 I/O UUKL существует из-за недостаточного ограничения имени пути к каталогу. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, читать файлы при веб-доступе и получить привилегии администратора системы через специально сформированное имя пути
Severity
Vendor
Honeywell Internatioinal Inc.
Software Name
Honeywell Excel Web XL1000C500U 300 I/O UUKL, Honeywell Excel Web XL1000C1000 600 I/O, Honeywell Excel Web XL1000C1000U 600 I/O UUKL, Honeywell Excel Web XL1000C50 52 I/O, Honeywell Excel Web XL1000C500 300 I/O, Honeywell Excel Web XL1000C50U 52 I/O UUKL, Honeywell Excel Web XL1000C100U 104 I/O UUKL, Honeywell Excel Web XL1000C100 104 I/O
Software Version
до 2.04.01 (Honeywell Excel Web XL1000C500U 300 I/O UUKL), до 2.04.01 (Honeywell Excel Web XL1000C1000 600 I/O), до 2.04.01 (Honeywell Excel Web XL1000C1000U 600 I/O UUKL), до 2.04.01 (Honeywell Excel Web XL1000C50 52 I/O), до 2.04.01 (Honeywell Excel Web XL1000C500 300 I/O), до 2.04.01 (Honeywell Excel Web XL1000C50U 52 I/O UUKL), до 2.04.01 (Honeywell Excel Web XL1000C100U 104 I/O UUKL), до 2.04.01 (Honeywell Excel Web XL1000C100 104 I/O)
Possible Mitigations
Обновление микропрограммного обеспечения до версии 2.04.01 или более новой
Reference
https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02
https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/
http://seclists.org/fulldisclosure/2015/Apr/79
CWE
CWE-22
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS 3.0": null,
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Honeywell Internatioinal Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C500U 300 I/O UUKL), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C1000 600 I/O), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C1000U 600 I/O UUKL), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C50 52 I/O), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C500 300 I/O), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C50U 52 I/O UUKL), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C100U 104 I/O UUKL), \u0434\u043e 2.04.01 (Honeywell Excel Web XL1000C100 104 I/O)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.04.01 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043d\u043e\u0432\u043e\u0439",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "31.03.2015",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "08.02.2016",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2016-00296",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2015-0984",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Honeywell Excel Web XL1000C500U 300 I/O UUKL, Honeywell Excel Web XL1000C1000 600 I/O, Honeywell Excel Web XL1000C1000U 600 I/O UUKL, Honeywell Excel Web XL1000C50 52 I/O, Honeywell Excel Web XL1000C500 300 I/O, Honeywell Excel Web XL1000C50U 52 I/O UUKL, Honeywell Excel Web XL1000C100U 104 I/O UUKL, Honeywell Excel Web XL1000C100 104 I/O",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, XL1000C1000U 600 I/O UUKL, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0447\u0438\u0442\u0430\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u043f\u0440\u0438 \u0432\u0435\u0431-\u0434\u043e\u0441\u0442\u0443\u043f\u0435 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u044b",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0432\u0435\u0440\u043d\u043e\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0438\u043c\u0435\u043d\u0438 \u043f\u0443\u0442\u0438 \u043a \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0443 \u0441 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u044b\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c (\u00ab\u041e\u0431\u0445\u043e\u0434 \u043f\u0443\u0442\u0438\u00bb) (CWE-22)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c FTP-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, XL1000C1000U 600 I/O UUKL \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0433\u043e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0438\u043c\u0435\u043d\u0438 \u043f\u0443\u0442\u0438 \u043a \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0443. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0447\u0438\u0442\u0430\u0442\u044c \u0444\u0430\u0439\u043b\u044b \u043f\u0440\u0438 \u0432\u0435\u0431-\u0434\u043e\u0441\u0442\u0443\u043f\u0435 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0447\u0435\u0440\u0435\u0437 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0438\u043c\u044f \u043f\u0443\u0442\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02\nhttps://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/\nhttp://seclists.org/fulldisclosure/2015/Apr/79",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-22",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)"
}
Title
Honeywell XL Web Controller目录遍历漏洞
Description
Honeywell XL Web Controller是基于Web的SCADA系统。
Honeywell XL Web Controller存在安全漏洞,通过FTP服务器内目录遍历漏洞,攻击者利用此漏洞可访问受影响系统的Web Root目录。
Severity
高
Formal description
目前没有详细解决方案提供: http://www.honeywell-building-solutions.de/katalog/ecatdata/pg_xlweb.html
Reference
https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02
Impacted products
| Name | ['Honeywell XL Web Controller XL1000C100 EXCEL WEB 104 I/O', 'Honeywell XL Web Controller XL1000C1000 EXCEL WEB 600 I/O', 'Honeywell XL Web Controller XL1000C1000U EXCEL WEB 600 I/O', 'Honeywell XL Web Controller XL1000C100U EXCEL WEB 104 I/O', 'Honeywell XL Web Controller XL1000C50 EXCEL WEB 52 I/O', 'Honeywell XL Web Controller XL1000C500 EXCEL WEB 300 I/O', 'Honeywell XL Web Controller XL1000C500U EXCEL WEB 300 I/O', 'Honeywell XL Web Controller XL1000C50U EXCEL WEB 52 I/O UU'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-0984"
}
},
"description": "Honeywell XL Web Controller\u662f\u57fa\u4e8eWeb\u7684SCADA\u7cfb\u7edf\u3002\r\n\r\nHoneywell XL Web Controller\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u901a\u8fc7FTP\u670d\u52a1\u5668\u5185\u76ee\u5f55\u904d\u5386\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u5229\u7528\u6b64\u6f0f\u6d1e\u53ef\u8bbf\u95ee\u53d7\u5f71\u54cd\u7cfb\u7edf\u7684Web Root\u76ee\u5f55\u3002",
"discovererName": "Martin Jartelius",
"formalWay": "\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u89e3\u51b3\u65b9\u6848\u63d0\u4f9b\uff1a\r\nhttp://www.honeywell-building-solutions.de/katalog/ecatdata/pg_xlweb.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2015-01834",
"openTime": "2015-03-20",
"products": {
"product": [
"Honeywell XL Web Controller XL1000C100 EXCEL WEB 104 I/O",
"Honeywell XL Web Controller XL1000C1000 EXCEL WEB 600 I/O",
"Honeywell XL Web Controller XL1000C1000U EXCEL WEB 600 I/O",
"Honeywell XL Web Controller XL1000C100U EXCEL WEB 104 I/O",
"Honeywell XL Web Controller XL1000C50 EXCEL WEB 52 I/O",
"Honeywell XL Web Controller XL1000C500 EXCEL WEB 300 I/O",
"Honeywell XL Web Controller XL1000C500U EXCEL WEB 300 I/O",
"Honeywell XL Web Controller XL1000C50U EXCEL WEB 52 I/O UU"
]
},
"referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02",
"serverity": "\u9ad8",
"submitTime": "2015-03-19",
"title": "Honeywell XL Web Controller\u76ee\u5f55\u904d\u5386\u6f0f\u6d1e"
}
FKIE_CVE-2015-0984
Vulnerability from fkie_nvd - Published: 2015-03-31 01:59 - Updated: 2026-05-06 22:30
Severity
Summary
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c100_104_i\\/o:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FE5182E3-F29B-4FEB-AA2E-2331A2E3C384",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\/o:*:*:*:*:*:*:*:*",
"matchCriteriaId": "196A505A-448A-4A5E-B62B-B8C38DF015E6",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\/o_uukl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A90BD7C0-CF26-43A8-AB05-8B742ABE361E",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c100u_104_i\\/o_uukl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "627A410D-99BB-4718-A3CC-BECF5D9833B6",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c50_52_i\\/o:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B79D656C-25CC-4612-BB3D-489A0D49E805",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\/o:*:*:*:*:*:*:*:*",
"matchCriteriaId": "299F6D4F-8DA5-4846-BCE2-FAE0C8BE087C",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\/o_uukl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5BB3D695-B243-415F-A800-DA5B7011A5BC",
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:honeywell:excel_web_xl_1000c50u_52_i\\/o_uukl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "37AEF6D2-8E68-4298-B768-A33CCF787C32",
"versionEndIncluding": "2.04.00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname."
},
{
"lang": "es",
"value": "Vulnerabilidad de salto de directorio en el servidor FTP en los controladores Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, y XL1000C1000U 600 I/O UUKL anterior a 2.04.01 permite a atacantes remotos leer ficheros bajo el root web, y como consecuencia obtener acceso al inicio de sesi\u00f3n de administraci\u00f3n, a trav\u00e9s de un nombre de ruta manipulado."
}
],
"evaluatorComment": "Further research has revealed that this vulnerability allows authenticated shell access as an administrator. The score has been updated to properly reflect this.",
"id": "CVE-2015-0984",
"lastModified": "2026-05-06T22:30:45.220",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2015-03-31T01:59:36.910",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Exploit"
],
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit"
],
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-22"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-957J-Q7Q8-PV75
Vulnerability from github – Published: 2022-05-17 03:57 – Updated: 2025-04-12 12:46
VLAI
Details
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.
{
"affected": [],
"aliases": [
"CVE-2015-0984"
],
"database_specific": {
"cwe_ids": [
"CWE-22"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2015-03-31T01:59:00Z",
"severity": "HIGH"
},
"details": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.",
"id": "GHSA-957j-q7q8-pv75",
"modified": "2025-04-12T12:46:36Z",
"published": "2022-05-17T03:57:31Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0984"
},
{
"type": "WEB",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"type": "WEB",
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2015-0984
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-0984",
"description": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.",
"id": "GSD-2015-0984"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-0984"
],
"details": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.",
"id": "GSD-2015-0984",
"modified": "2023-12-13T01:19:58.832033Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2015-0984",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"name": "20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"name": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/",
"refsource": "MISC",
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c50_52_i\\/o:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\/o_uukl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\/o:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c1000_600_i\\/o:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c50u_52_i\\/o_uukl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c100u_104_i\\/o_uukl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c100_104_i\\/o:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:honeywell:excel_web_xl_1000c500_300_i\\/o_uukl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.04.00",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2015-0984"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02",
"refsource": "MISC",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02"
},
{
"name": "20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB",
"refsource": "FULLDISC",
"tags": [],
"url": "http://seclists.org/fulldisclosure/2015/Apr/79"
},
{
"name": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/",
"refsource": "MISC",
"tags": [
"Exploit"
],
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2016-04-06T12:47Z",
"publishedDate": "2015-03-31T01:59Z"
}
}
}
ICSA-15-076-02
Vulnerability from csaf_cisa - Published: 2015-12-18 07:00 - Updated: 2025-06-06 21:40Summary
Honeywell XL Web Controller Directory Traversal Vulnerability
Notes
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
CISA Disclaimer: This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Recommended Practices: CISA recommends users take defensive measures to minimize the risk of exploitation.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolating them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices: CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.
10.0 ()
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Honeywell EXCEL WEB 52 I/O: XL1000C50
Honeywell / EXCEL WEB 52 I/O
|
XL1000C50 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
Mitigation
fix
|
|
|
Honeywell EXCEL WEB 52 I/O: XL1001C52
Honeywell / EXCEL WEB 52 I/O
|
XL1001C52 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
Mitigation
fix
|
|
|
Honeywell EXCEL WEB 52 I/O: XL1002C54
Honeywell / EXCEL WEB 52 I/O
|
XL1002C54 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
Mitigation
fix
|
|
|
Honeywell EXCEL WEB 52 I/O: XL1003C56
Honeywell / EXCEL WEB 52 I/O
|
XL1003C56 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
Mitigation
fix
|
|
|
Honeywell EXCEL WEB 52 I/O: XL1004C58
Honeywell / EXCEL WEB 52 I/O
|
XL1004C58 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
Mitigation
fix
|
References
10 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolating them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-15-076-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2015/icsa-15-076-02.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-15-076-02 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-15-076-02"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
}
],
"title": "Honeywell XL Web Controller Directory Traversal Vulnerability",
"tracking": {
"current_release_date": "2025-06-06T21:40:01.723578Z",
"generator": {
"date": "2025-06-06T21:40:01.723545Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-15-076-02",
"initial_release_date": "2015-12-18T07:00:00.000000Z",
"revision_history": [
{
"date": "2015-12-18T07:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
},
{
"date": "2025-06-06T21:40:01.723578Z",
"legacy_version": "CSAF Conversion",
"number": "2",
"summary": "Advisory converted into a CSAF"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "XL1000C50",
"product": {
"name": "Honeywell EXCEL WEB 52 I/O: XL1000C50",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "EXCEL WEB 52 I/O"
},
{
"branches": [
{
"category": "product_version",
"name": "XL1001C52",
"product": {
"name": "Honeywell EXCEL WEB 52 I/O: XL1001C52",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "EXCEL WEB 52 I/O"
},
{
"branches": [
{
"category": "product_version",
"name": "XL1002C54",
"product": {
"name": "Honeywell EXCEL WEB 52 I/O: XL1002C54",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "EXCEL WEB 52 I/O"
},
{
"branches": [
{
"category": "product_version",
"name": "XL1003C56",
"product": {
"name": "Honeywell EXCEL WEB 52 I/O: XL1003C56",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "EXCEL WEB 52 I/O"
},
{
"branches": [
{
"category": "product_version",
"name": "XL1004C58",
"product": {
"name": "Honeywell EXCEL WEB 52 I/O: XL1004C58",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "EXCEL WEB 52 I/O"
}
],
"category": "vendor",
"name": "Honeywell"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-0984",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The update for this vulnerability is Excel Web Linux version 2.04.01 (March, 2014) or later plus the programming tool CARE version 10.02 (March 2014) or later",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Customers are encouraged to contact their local Honeywell HBS branch to have their sites updated to the latest version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "In the Centraline partner channel, Excel Web controllers also have been sold under the brand name \u201cFALCON\u201d",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Centraline partners can directly access (http://www.centraline.com) and get these versions",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "http://www.centraline.com"
},
{
"category": "mitigation",
"details": "Linux: (https://www.centraline.com/index.php?id=847\u0026route=article/index\u0026directory_id=140\u0026direct_link=1)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.centraline.com/index.php?id=847\u0026route=article/index\u0026directory_id=140\u0026direct_link=1"
},
{
"category": "mitigation",
"details": "CARE: (https://www.centraline.com/index.php?id=847\u0026route=article/index\u0026directory_id=138\u0026direct_link=1)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://www.centraline.com/index.php?id=847\u0026route=article/index\u0026directory_id=138\u0026direct_link=1"
}
],
"scores": [
{
"cvss_v2": {
"baseScore": 10.0,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
]
}
]
}
tid-323
Vulnerability from emb3d
Type
Description
A threat actor can send requests for files or content that resides in different directories from those intended to be accessible by the web server. This can be used to gain access to data that is not intended to be remotely accessible through the web servers, such as files from the operating system or other applications. This threat is primarily a result of the web server having excessive privileges regarding files and directories on the device
CWE
- CWE-22: Path Traversal
VAR-201503-0072
Vulnerability from variot - Updated: 2025-04-13 23:39Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname. Honeywell XL Web Controller is a web-based SCADA system
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201503-0072",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "excel web xl 1000c100u 104 i\\/o uukl",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c50 52 i\\/o",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c100 104 i\\/o",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c500 300 i\\/o uukl",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c1000 600 i\\/o uukl",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c1000 600 i\\/o",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c50u 52 i\\/o uukl",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c500 300 i\\/o",
"scope": "lte",
"trust": 1.0,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "falcon linux",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c100 104 i/o",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c1000 600 i/o",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c1000u 600 i/o uukl",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c100u 104 i/o uukl",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c50 52 i/o",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c500 300 i/o",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c500u 300 i/o uukl",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl1000c50u 52 i/o uukl",
"scope": "lt",
"trust": 0.8,
"vendor": "honeywell",
"version": "2.04.01"
},
{
"model": "xl web controller xl1000c100 excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "104"
},
{
"model": "xl web controller xl1000c1000 excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "600"
},
{
"model": "xl web controller xl1000c1000u excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "600"
},
{
"model": "xl web controller xl1000c100u excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "104"
},
{
"model": "xl web controller xl1000c50 excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "52"
},
{
"model": "xl web controller xl1000c500 excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "300"
},
{
"model": "xl web controller xl1000c500u excel web i/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "300"
},
{
"model": "xl web controller xl1000c50u excel web i/o uu",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "52"
},
{
"model": "excel web xl 1000c1000 600 i\\/o uukl",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c50 52 i\\/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c500 300 i\\/o uukl",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c100u 104 i\\/o uukl",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c500 300 i\\/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c1000 600 i\\/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c100 104 i\\/o",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": "excel web xl 1000c50u 52 i\\/o uukl",
"scope": "eq",
"trust": 0.6,
"vendor": "honeywell",
"version": "2.04.00"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c1000 600 i o",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c1000 600 i o uukl",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c100 104 i o",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c100u 104 i o uukl",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c500 300 i o",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c500 300 i o uukl",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c50 52 i o",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "excel web xl 1000c50u 52 i o uukl",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:honeywell:falcon_xlweb_linux_controller",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c100_104_i%2fo",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c1000_600_i%2fo",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c1000_600_i%2fo_uukl",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c100u_104_i%2fo_uukl",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c50_52_i%2fo",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c500_300_i%2fo",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c500_300_i%2fo_uukl",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:honeywell:excel_web_xl_1000c50u_52_i%2fo_uukl",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
}
]
},
"cve": "CVE-2015-0984",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2015-0984",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CNVD-2015-01834",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.9 [IVD]"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2015-0984",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2015-0984",
"trust": 0.8,
"value": "High"
},
{
"author": "CNVD",
"id": "CNVD-2015-01834",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201503-636",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname. Honeywell XL Web Controller is a web-based SCADA system",
"sources": [
{
"db": "NVD",
"id": "CVE-2015-0984"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
}
],
"trust": 2.34
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2015-0984",
"trust": 3.2
},
{
"db": "ICS CERT",
"id": "ICSA-15-076-02",
"trust": 3.0
},
{
"db": "CNVD",
"id": "CNVD-2015-01834",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022",
"trust": 0.8
},
{
"db": "IVD",
"id": "99EDA5D0-2351-11E6-ABEF-000C29C66E3D",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"id": "VAR-201503-0072",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
}
],
"trust": 1.8
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
}
]
},
"last_update_date": "2025-04-13T23:39:07.329000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://honeywell.com/Pages/Home.aspx"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-22",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.0,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-076-02"
},
{
"trust": 1.0,
"url": "http://seclists.org/fulldisclosure/2015/apr/79"
},
{
"trust": 1.0,
"url": "https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0984"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0984"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-03-20T00:00:00",
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"date": "2015-03-20T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"date": "2015-04-03T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"date": "2015-03-31T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"date": "2015-03-31T01:59:36.910000",
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-03-20T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-01834"
},
{
"date": "2015-05-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-002022"
},
{
"date": "2015-04-03T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201503-636"
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2015-0984"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Honeywell XL Web Controller Directory Traversal Vulnerability",
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-01834"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Path traversal",
"sources": [
{
"db": "IVD",
"id": "99eda5d0-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNNVD",
"id": "CNNVD-201503-636"
}
],
"trust": 0.8
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…