VAR-202207-1149
Vulnerability from variot - Updated: 2024-12-21 23:15An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vision Client Session IDs are mishandled. An attacker can determine which session IDs were generated in the past and then hijack sessions assigned to these IDs via Randy. Inductive Automation of Ignition Exists in a fraudulent authentication vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Inductive Automation Ignition is a comprehensive platform for industrial automation that provides scalable solutions for monitoring, control, data collection and analysis. Ignition was developed by Inductive Automation to help users build and deploy automation systems that meet specific needs.
Inductive Automation Ignition versions prior to 7.9.20, 8.0.1 and later, and versions prior to 8.1.17 have an access control error vulnerability, which is caused by improper handling of session IDs in the designer and visual clients. Attackers can exploit the vulnerability to hijack sessions
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202207-1149",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ignition",
"scope": "gte",
"trust": 1.0,
"vendor": "inductiveautomation",
"version": "8.0.1"
},
{
"model": "ignition",
"scope": "lt",
"trust": 1.0,
"vendor": "inductiveautomation",
"version": "7.9.20"
},
{
"model": "ignition",
"scope": "lt",
"trust": 1.0,
"vendor": "inductiveautomation",
"version": "8.1.17"
},
{
"model": "ignition",
"scope": "eq",
"trust": 0.8,
"vendor": "inductive automation",
"version": "7.9.20"
},
{
"model": "ignition",
"scope": "eq",
"trust": 0.8,
"vendor": "inductive automation",
"version": "8.0.1 that\u0027s all 8.1.17"
},
{
"model": "ignition",
"scope": null,
"trust": 0.8,
"vendor": "inductive automation",
"version": null
},
{
"model": "ignition",
"scope": "eq",
"trust": 0.8,
"vendor": "inductive automation",
"version": null
},
{
"model": "automation inductive automation ignition",
"scope": "lt",
"trust": 0.6,
"vendor": "inductive",
"version": "7.9.20"
},
{
"model": "automation inductive automation ignition",
"scope": "gte",
"trust": 0.6,
"vendor": "inductive",
"version": "8.0.1,\u003c8.1.17"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"cve": "CVE-2022-35890",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2024-48770",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2022-35890",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 9.8,
"baseSeverity": "Critical",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2022-35890",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2022-35890",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2022-35890",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2024-48770",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-202207-1380",
"trust": 0.6,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vision Client Session IDs are mishandled. An attacker can determine which session IDs were generated in the past and then hijack sessions assigned to these IDs via Randy. Inductive Automation of Ignition Exists in a fraudulent authentication vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Inductive Automation Ignition\u200c is a comprehensive platform for industrial automation that provides scalable solutions for monitoring, control, data collection and analysis. Ignition was developed by Inductive Automation to help users build and deploy automation systems that meet specific needs\u200c. \n\nInductive Automation Ignition versions prior to 7.9.20, 8.0.1 and later, and versions prior to 8.1.17 have an access control error vulnerability, which is caused by improper handling of session IDs in the designer and visual clients. Attackers can exploit the vulnerability to hijack sessions",
"sources": [
{
"db": "NVD",
"id": "CVE-2022-35890"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "VULMON",
"id": "CVE-2022-35890"
}
],
"trust": 2.25
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2022-35890",
"trust": 3.9
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187",
"trust": 0.8
},
{
"db": "CNVD",
"id": "CNVD-2024-48770",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2022-35890",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "VULMON",
"id": "CVE-2022-35890"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"id": "VAR-202207-1149",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
}
],
"trust": 1.6
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
}
]
},
"last_update_date": "2024-12-21T23:15:40.902000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Patch for Inductive Automation Ignition Access Control Mistake Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/644341"
},
{
"title": "Inductive Automation Ignition Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=201097"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-863",
"trust": 1.0
},
{
"problemtype": "Illegal authentication (CWE-863) [NVD evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.1,
"url": "https://support.inductiveautomation.com/hc/en-us/articles/7625759776653"
},
{
"trust": 2.5,
"url": "https://github.com/sourceincite/randy"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2022-35890"
},
{
"trust": 0.6,
"url": "https://cxsecurity.com/cveshow/cve-2022-35890/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "VULMON",
"id": "CVE-2022-35890"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"db": "VULMON",
"id": "CVE-2022-35890"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-12-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"date": "2022-07-15T00:00:00",
"db": "VULMON",
"id": "CVE-2022-35890"
},
{
"date": "2023-09-06T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"date": "2022-07-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"date": "2022-07-15T21:15:08.827000",
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2024-12-20T00:00:00",
"db": "CNVD",
"id": "CNVD-2024-48770"
},
{
"date": "2022-07-16T00:00:00",
"db": "VULMON",
"id": "CVE-2022-35890"
},
{
"date": "2023-09-06T08:21:00",
"db": "JVNDB",
"id": "JVNDB-2022-013187"
},
{
"date": "2022-07-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202207-1380"
},
{
"date": "2022-07-21T14:45:20.123000",
"db": "NVD",
"id": "CVE-2022-35890"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Inductive\u00a0Automation\u00a0 of \u00a0Ignition\u00a0 Fraud related to unauthorized authentication in",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-013187"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202207-1380"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…