Vulnerability-Lookup

CVE-2018-17921 (GCVE-0-2018-17921)

Vulnerability from cvelistv5 – Published: 2018-10-24 22:00 – Updated: 2024-09-17 01:46

Summary

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

Severity ?

No CVSS data available.

CWE

CWE-284 - IMPROPER ACCESS CONTROL CWE-284

Assigner

icscert

References

URL

	Vendor	Product	Version
	GAIN Electronic Co. Ltd	SAGA1-L8B	Affected: All firmware versions prior to A0.10

FKIE_CVE-2018-17921

Vulnerability from fkie_nvd - Published: 2018-10-24 22:29 - Updated: 2024-11-21 03:55

Severity ?

8.8 (High) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

References

URL	Tags
ics-cert@hq.dhs.gov	http://www.securityfocus.com/bid/105729	Third Party Advisory, VDB Entry
ics-cert@hq.dhs.gov	https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/105729	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02	Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	sagaradio	saga1-l8b_firmware	*
	sagaradio	saga1-l8b	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:sagaradio:saga1-l8b_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "09F0FB47-A0F7-42F7-B7B4-AF1A7B2EB9D2",
              "versionEndExcluding": "a0.10",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:sagaradio:saga1-l8b:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1B937E7-9876-4EC6-8405-CA1A48458CFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction."
    },
    {
      "lang": "es",
      "value": "SAGA1-L8B con cualquier versi\u00f3n de firmware anterior a la A0.10 es vulnerable a un ataque que podr\u00eda permitir que un atacante empareje por la fuerza el dispositivo sin interacci\u00f3n humana."
    }
  ],
  "id": "CVE-2018-17921",
  "lastModified": "2024-11-21T03:55:12.693",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "ADJACENT_NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 6.5,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-10-24T22:29:01.073",
  "references": [
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105729"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105729"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
    }
  ],
  "sourceIdentifier": "ics-cert@hq.dhs.gov",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-284"
        }
      ],
      "source": "ics-cert@hq.dhs.gov",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2018-17921

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

Aliases

CVE-2018-17921

Aliases

CVE-2018-17921

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-17921",
    "description": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.",
    "id": "GSD-2018-17921"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-17921"
      ],
      "details": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.",
      "id": "GSD-2018-17921",
      "modified": "2023-12-13T01:22:31.076109Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "DATE_PUBLIC": "2018-10-23T00:00:00",
        "ID": "CVE-2018-17921",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "SAGA1-L8B",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All firmware versions prior to A0.10"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "GAIN Electronic Co. Ltd"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "IMPROPER ACCESS CONTROL CWE-284"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
          },
          {
            "name": "105729",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/105729"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:sagaradio:saga1-l8b_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "a0.10",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:sagaradio:saga1-l8b:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2018-17921"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
            },
            {
              "name": "105729",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/105729"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 6.5,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2020-09-18T17:16Z",
      "publishedDate": "2018-10-24T22:29Z"
    }
  }
}

GHSA-9XRG-HMR4-G2MQ

Vulnerability from github – Published: 2022-05-13 01:16 – Updated: 2022-05-13 01:16

Details

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

Severity ?

8.8 (High)


                  
                    CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-17921"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-10-24T22:29:00Z",
    "severity": "HIGH"
  },
  "details": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.",
  "id": "GHSA-9xrg-hmr4-g2mq",
  "modified": "2022-05-13T01:16:09Z",
  "published": "2022-05-13T01:16:09Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-17921"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/105729"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2018-22093

Vulnerability from cnvd - Published: 2018-10-29

Title

GAIN Electronic Co. Ltd SAGA1-L Series访问控制漏洞

Description

GAIN SAGA1-L Series是GAIN Electronic公司的一款SAGA1-L系列的工业遥控器产品。使用A0.10之前版本固件的GAIN SAGA1-L Series产品中存在安全漏洞。攻击者可利用该漏洞无需人工交互即可强行配对设备。

Severity

中

Patch Name

GAIN Electronic Co. Ltd SAGA1-L Series访问控制漏洞的补丁

Patch Description

GAIN SAGA1-L Series是GAIN Electronic公司的一款SAGA1-L系列的工业遥控器产品。使用A0.10之前版本固件的GAIN SAGA1-L Series产品中存在安全漏洞。攻击者可利用该漏洞无需人工交互即可强行配对设备。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： http://www.sagaradio.com.tw/

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02

Impacted products

Name
GAIN Electronic SAGA1-L series <=A0.10

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-17921"
    }
  },
  "description": "GAIN SAGA1-L Series\u662fGAIN Electronic\u516c\u53f8\u7684\u4e00\u6b3eSAGA1-L\u7cfb\u5217\u7684\u5de5\u4e1a\u9065\u63a7\u5668\u4ea7\u54c1\u3002\r\n\r\n\u4f7f\u7528A0.10\u4e4b\u524d\u7248\u672c\u56fa\u4ef6\u7684GAIN SAGA1-L Series\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u65e0\u9700\u4eba\u5de5\u4ea4\u4e92\u5373\u53ef\u5f3a\u884c\u914d\u5bf9\u8bbe\u5907\u3002",
  "discovererName": "Marco Balduzzi\uff0cPhilippe Z Lin\uff0cFederico Maggi\uff0cJonathan Andersson\uff0cUrano Akira\uff0cStephen Hilt\u548cRainer Vosseler\u4e0e\u8d8b\u52bf\u79d1\u6280\u7684Zero Day Initiative",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttp://www.sagaradio.com.tw/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-22093",
  "openTime": "2018-10-29",
  "patchDescription": "GAIN SAGA1-L Series\u662fGAIN Electronic\u516c\u53f8\u7684\u4e00\u6b3eSAGA1-L\u7cfb\u5217\u7684\u5de5\u4e1a\u9065\u63a7\u5668\u4ea7\u54c1\u3002\r\n\r\n\u4f7f\u7528A0.10\u4e4b\u524d\u7248\u672c\u56fa\u4ef6\u7684GAIN SAGA1-L Series\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u65e0\u9700\u4eba\u5de5\u4ea4\u4e92\u5373\u53ef\u5f3a\u884c\u914d\u5bf9\u8bbe\u5907\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "GAIN Electronic Co. Ltd SAGA1-L Series\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "GAIN Electronic SAGA1-L series \u003c=A0.10"
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02",
  "serverity": "\u4e2d",
  "submitTime": "2018-10-24",
  "title": "GAIN Electronic Co. Ltd SAGA1-L Series\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e"
}

ICSA-18-296-02

Vulnerability from csaf_cisa - Published: 2018-10-23 00:00 - Updated: 2018-10-23 00:00

Summary

GAIN Electronic Co. Ltd SAGA1-L Series

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Risk evaluation

Successful exploitation of these vulnerabilities could allow remote code execution and potentially delete the product 's firmware.

Critical infrastructure sectors

Communications

Countries/areas deployed

United States

Company headquarters location

Taiwan

Recommended Practices

NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should ensure the product is in a physically secure area.

Recommended Practices

NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices

NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.

Exploitability

No known public exploits specifically target these vulnerabilities.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Marco Balduzzi",
          "Philippe Z Lin",
          "Federico Maggi",
          "Jonathan Andersson",
          "Urano Akira",
          "Stephen Hilt",
          "Rainer Vosseler"
        ],
        "organization": "Trend Micro \u0027s Zero Day Initiative",
        "summary": "reporting these vulnerabilities to NCCIC"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
        "title": "CISA Disclaimer"
      },
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "summary",
        "text": "Successful exploitation of these vulnerabilities could allow remote code execution and potentially delete the product \u0027s firmware.",
        "title": "Risk evaluation"
      },
      {
        "category": "other",
        "text": "Communications",
        "title": "Critical infrastructure sectors"
      },
      {
        "category": "other",
        "text": "United States",
        "title": "Countries/areas deployed"
      },
      {
        "category": "other",
        "text": "Taiwan",
        "title": "Company headquarters location"
      },
      {
        "category": "general",
        "text": "NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should ensure the product is in a physically secure area.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "other",
        "text": "No known public exploits specifically target these vulnerabilities.",
        "title": "Exploitability"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-18-296-02 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2018/icsa-18-296-02.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-18-296-02 Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-18-296-02"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-18-296-02"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
      }
    ],
    "title": "GAIN Electronic Co. Ltd SAGA1-L Series",
    "tracking": {
      "current_release_date": "2018-10-23T00:00:00.000000Z",
      "generator": {
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSA-18-296-02",
      "initial_release_date": "2018-10-23T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2018-10-23T00:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "ICSA-18-296-02 GAIN Electronic Co. Ltd SAGA1-L Series"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c A0.10",
                "product": {
                  "name": "SAGA1-L8B: all versions prior to A0.10",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "SAGA1-L8B"
          }
        ],
        "category": "vendor",
        "name": "GAIN Electronic Co. Ltd"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-17903",
      "cwe": {
        "id": "CWE-294",
        "name": "Authentication Bypass by Capture-replay"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This product is vulnerable to a replay attack and command forgery.CVE-2018-17903 has been assigned to this vulnerability. A CVSS v3 base score of 8.3 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-17903"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "GAIN Electronic Co. Ltd has recommended that users update to firmware version A0.10. The new firmware can be obtained through a distributor.",
          "product_ids": [
            "CSAFPID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2018-17921",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This vulnerability may allow an attacker to force-pair the device without human interaction.CVE-2018-17921 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-17921"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "GAIN Electronic Co. Ltd has recommended that users update to firmware version A0.10. The new firmware can be obtained through a distributor.",
          "product_ids": [
            "CSAFPID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2018-17923",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An attacker with physical access to the product may able to reprogram it.CVE-2018-17923 has been assigned to this vulnerability. A CVSS v3 base score of 6.1 has been calculated; the CVSS vector string is (AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-17923"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "GAIN Electronic Co. Ltd has recommended that users update to firmware version A0.10. The new firmware can be obtained through a distributor.",
          "product_ids": [
            "CSAFPID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001"
          ]
        }
      ]
    }
  ]
}

VAR-201810-0462

Vulnerability from variot - Updated: 2024-11-23 22:00

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction. SAGA1-L8B Contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to issue commands on vulnerable installations of Saga Radio equipment. Authentication is not required to exploit this vulnerability.The specific flaw exists within the processing of communication between the transmitter and receiver. By sending a crafted re-pairing packet an attacker can force a receiver to pair with a new transmitter without user interaction. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. GAINSAGA1-LSeries is a SAGA1-L series of industrial remote control products from GAINElectronic. A security hole exists in the GAINSAGA1-LSeries product that uses firmware prior to A0.10. GAIN Electronic SAGA1-L Series is prone to the following security vulnerabilities: 1. An authentication bypass vulnerability 2. An local-authentication bypass vulnerability 3. An access bypass vulnerability An attacker can exploit these issues to bypass authentication mechanism, disclose sensitive information and perform unauthorized actions

Show details on source website

JSON

To clipboard

{
  "affected_products": {
    "_id": null,
    "data": [
      {
        "_id": null,
        "model": "saga1-l8b",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "sagaradio",
        "version": "a0.10"
      },
      {
        "_id": null,
        "model": "saga1-l8b",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "gain electronic",
        "version": "a0.10"
      },
      {
        "_id": null,
        "model": "saga1-l8b",
        "scope": null,
        "trust": 0.7,
        "vendor": "saga",
        "version": null
      },
      {
        "_id": null,
        "model": "electronic saga1-l series \u003c=a0.10",
        "scope": null,
        "trust": 0.6,
        "vendor": "gain",
        "version": null
      },
      {
        "_id": null,
        "model": "electronic saga1-l series",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "gain",
        "version": "0"
      },
      {
        "_id": null,
        "model": "electronic saga1-l series a0.10",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "gain",
        "version": null
      },
      {
        "_id": null,
        "model": null,
        "scope": "eq",
        "trust": 0.2,
        "vendor": "saga1 l8b",
        "version": "*"
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "BID",
        "id": "105729"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      }
    ]
  },
  "configurations": {
    "_id": null,
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:sagaradio:saga1-l8b_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      }
    ]
  },
  "credits": {
    "_id": null,
    "data": "Philippe Lin, Jonathan Andersson, Rainer Vosseler, Federico Maggi, Urano Akira, Stephen Hilt, Marco Balduzzi",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2018-17921",
  "cvss": {
    "_id": null,
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.8,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 6.5,
            "id": "CVE-2018-17921",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 1.9,
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.2,
            "id": "CNVD-2018-22093",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.2,
            "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "MEDIUM",
            "trust": 0.2,
            "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.9 [IVD]"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT",
            "author": "nvd@nist.gov",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 2.8,
            "id": "CVE-2018-17921",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Adjacent Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 8.8,
            "baseSeverity": "High",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2018-17921",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT",
            "author": "ZDI",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.6,
            "id": "CVE-2018-17921",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 0.7,
            "userInteraction": "NONE",
            "vectorString": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2018-17921",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2018-17921",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "ZDI",
            "id": "CVE-2018-17921",
            "trust": 0.7,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2018-22093",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201810-1236",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "IVD",
            "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1",
            "trust": 0.2,
            "value": "HIGH"
          },
          {
            "author": "VULMON",
            "id": "CVE-2018-17921",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      }
    ]
  },
  "description": {
    "_id": null,
    "data": "SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction. SAGA1-L8B Contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to issue commands on vulnerable installations of Saga Radio equipment. Authentication is not required to exploit this vulnerability.The specific flaw exists within the processing of communication between the transmitter and receiver. By sending a crafted re-pairing packet an attacker can force a receiver to pair with a new transmitter without user interaction. An attacker can leverage this vulnerability to issue commands to the physical equipment controlled by the device. GAINSAGA1-LSeries is a SAGA1-L series of industrial remote control products from GAINElectronic. A security hole exists in the GAINSAGA1-LSeries product that uses firmware prior to A0.10. GAIN Electronic SAGA1-L Series is prone to the following security vulnerabilities:\n1. An authentication bypass vulnerability\n2. An local-authentication bypass vulnerability\n3. An access bypass vulnerability\nAn attacker can exploit these issues to bypass authentication mechanism, disclose sensitive information and perform unauthorized actions",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "BID",
        "id": "105729"
      },
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921"
      }
    ],
    "trust": 3.33
  },
  "external_ids": {
    "_id": null,
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2018-17921",
        "trust": 4.3
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-18-296-02",
        "trust": 3.4
      },
      {
        "db": "BID",
        "id": "105729",
        "trust": 2.0
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6526",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317",
        "trust": 0.7
      },
      {
        "db": "IVD",
        "id": "E2FEEFE2-39AB-11E9-A31B-000C29342CB1",
        "trust": 0.2
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921"
      },
      {
        "db": "BID",
        "id": "105729"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      }
    ]
  },
  "id": "VAR-201810-0462",
  "iot": {
    "_id": null,
    "data": true,
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      }
    ],
    "trust": 1.675
  },
  "iot_taxonomy": {
    "_id": null,
    "data": [
      {
        "category": [
          "ICS",
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      },
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.2
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      }
    ]
  },
  "last_update_date": "2024-11-23T22:00:16.545000Z",
  "patch": {
    "_id": null,
    "data": [
      {
        "title": "SAGA1-L6B \u0026 L8B",
        "trust": 0.8,
        "url": "http://www.sagaradio.com.tw/SAGA1-L6B.html"
      },
      {
        "title": "SAGA has issued an update to correct this vulnerability.",
        "trust": 0.7,
        "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02"
      },
      {
        "title": "GAINElectronicCo.LtdSAGA1-LSeries Access Control Vulnerability Patch",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/143423"
      },
      {
        "title": "GAIN SAGA1-L8B Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=86318"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      }
    ]
  },
  "problemtype_data": {
    "_id": null,
    "data": [
      {
        "problemtype": "CWE-284",
        "trust": 1.8
      },
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      }
    ]
  },
  "references": {
    "_id": null,
    "data": [
      {
        "trust": 4.1,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-18-296-02"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/105729"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-17921"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-17921"
      },
      {
        "trust": 0.3,
        "url": "http://www.sagaradio.com.tw/about.html"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-1317"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921"
      },
      {
        "db": "BID",
        "id": "105729"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921"
      }
    ]
  },
  "sources": {
    "_id": null,
    "data": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1317",
        "ident": null
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093",
        "ident": null
      },
      {
        "db": "VULMON",
        "id": "CVE-2018-17921",
        "ident": null
      },
      {
        "db": "BID",
        "id": "105729",
        "ident": null
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-013875",
        "ident": null
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236",
        "ident": null
      },
      {
        "db": "NVD",
        "id": "CVE-2018-17921",
        "ident": null
      }
    ]
  },
  "sources_release_date": {
    "_id": null,
    "data": [
      {
        "date": "2018-10-29T00:00:00",
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1",
        "ident": null
      },
      {
        "date": "2018-10-25T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-1317",
        "ident": null
      },
      {
        "date": "2018-10-29T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-22093",
        "ident": null
      },
      {
        "date": "2018-10-24T00:00:00",
        "db": "VULMON",
        "id": "CVE-2018-17921",
        "ident": null
      },
      {
        "date": "2018-10-23T00:00:00",
        "db": "BID",
        "id": "105729",
        "ident": null
      },
      {
        "date": "2019-03-05T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-013875",
        "ident": null
      },
      {
        "date": "2018-10-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201810-1236",
        "ident": null
      },
      {
        "date": "2018-10-24T22:29:01.073000",
        "db": "NVD",
        "id": "CVE-2018-17921",
        "ident": null
      }
    ]
  },
  "sources_update_date": {
    "_id": null,
    "data": [
      {
        "date": "2018-10-25T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-1317",
        "ident": null
      },
      {
        "date": "2018-10-29T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-22093",
        "ident": null
      },
      {
        "date": "2020-09-18T00:00:00",
        "db": "VULMON",
        "id": "CVE-2018-17921",
        "ident": null
      },
      {
        "date": "2018-10-23T00:00:00",
        "db": "BID",
        "id": "105729",
        "ident": null
      },
      {
        "date": "2019-03-05T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-013875",
        "ident": null
      },
      {
        "date": "2020-09-21T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201810-1236",
        "ident": null
      },
      {
        "date": "2024-11-21T03:55:12.693000",
        "db": "NVD",
        "id": "CVE-2018-17921",
        "ident": null
      }
    ]
  },
  "threat_type": {
    "_id": null,
    "data": "remote or local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "_id": null,
    "data": "GAIN Electronic Co. Ltd SAGA1-L Series Access control vulnerability",
    "sources": [
      {
        "db": "IVD",
        "id": "e2feefe2-39ab-11e9-a31b-000c29342cb1"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-22093"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "_id": null,
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201810-1236"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-17921 (GCVE-0-2018-17921)

FKIE_CVE-2018-17921

GSD-2018-17921

GHSA-9XRG-HMR4-G2MQ

CNVD-2018-22093

ICSA-18-296-02

VAR-201810-0462

Tags

Sightings

Nomenclature