FKIE_CVE-2022-30242

Vulnerability from fkie_nvd - Published: 2022-07-15 12:15 - Updated: 2024-11-21 07:02
Severity
6.8 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Summary
Honeywell Alerton Ascent Control Module (ACM) through 2022-05-04 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered.
References
cve@mitre.orghttps://blog.scadafence.comNot Applicable
cve@mitre.orghttps://github.com/scadafence/Honeywell-Alerton-VulnerabilitiesThird Party Advisory
cve@mitre.orghttps://www.honeywell.com/us/en/product-securityVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://blog.scadafence.comNot Applicable
af854a3a-2127-422b-91ae-364da2661108https://github.com/scadafence/Honeywell-Alerton-VulnerabilitiesThird Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.honeywell.com/us/en/product-securityVendor Advisory
Impacted products
Vendor Product Version
honeywell alerton_ascent_control_module_firmware *
honeywell alerton_ascent_control_module -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:honeywell:alerton_ascent_control_module_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DCE4D98D-0502-4449-80D1-BEFA48C305E4",
              "versionEndIncluding": "2022-05-04",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:honeywell:alerton_ascent_control_module:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4BE0362A-EE15-4DCC-B219-73B4E87C3BA6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Honeywell Alerton Ascent Control Module (ACM) through 2022-05-04 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller\u0027s function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered."
    },
    {
      "lang": "es",
      "value": "El m\u00f3dulo de control Alerton Ascent (ACM) de Honeywell versiones hasta 04-05-2022, permite realizar cambios de configuraci\u00f3n no autenticados desde usuarios remotos. Esto permite que los datos de configuraci\u00f3n sean almacenados en el controlador y luego son implementados. Un usuario con intenciones maliciosas puede enviar un paquete dise\u00f1ado para cambiar la configuraci\u00f3n del controlador sin el conocimiento de otros usuarios, alterando las capacidades de funcionamiento del controlador. La configuraci\u00f3n modificada no es actualizada en la interfaz de usuario, lo que crea una incoherencia entre la visualizaci\u00f3n de la configuraci\u00f3n y la configuraci\u00f3n real en el controlador. Despu\u00e9s del cambio de configuraci\u00f3n, la remediaci\u00f3n requiere revertir a la configuraci\u00f3n correcta, requiriendo acceso f\u00edsico o remoto dependiendo de la configuraci\u00f3n que fue alterada"
    }
  ],
  "id": "CVE-2022-30242",
  "lastModified": "2024-11-21T07:02:26.460",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 4.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-07-15T12:15:08.730",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Not Applicable"
      ],
      "url": "https://blog.scadafence.com"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.honeywell.com/us/en/product-security"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Not Applicable"
      ],
      "url": "https://blog.scadafence.com"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.honeywell.com/us/en/product-security"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.