CVE-2017-16819 - Vulnerability Details - OpenCVE

A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.html) that is then reflected in multiple pages where that field data is utilized, resulting in session hijacking and possible elevation of privileges.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Icontime	Rtc-1000 Rtc-1000 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:icontime:rtc-1000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:icontime:rtc-1000:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.exploit-db.com/exploits/43158/
https://www.keiththome.com/rtc-1000-vuln/

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-11-17T17:00:00

Updated: 2024-08-05T20:35:21.215Z

Reserved: 2017-11-14T00:00:00

Link: CVE-2017-16819

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-11-17T17:29:00.290

Modified: 2024-11-21T03:17:01.990

Link: CVE-2017-16819

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-11-17T00:00:00", "descriptions": [{"lang": "en", "value": "A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.html) that is then reflected in multiple pages where that field data is utilized, resulting in session hijacking and possible elevation of privileges."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-11-22T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "43158", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/43158/"}, {"tags": ["x_refsource_MISC"], "url": "https://www.keiththome.com/rtc-1000-vuln/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-16819", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.html) that is then reflected in multiple pages where that field data is utilized, resulting in session hijacking and possible elevation of privileges."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "43158", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/43158/"}, {"name": "https://www.keiththome.com/rtc-1000-vuln/", "refsource": "MISC", "url": "https://www.keiththome.com/rtc-1000-vuln/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T20:35:21.215Z"}, "title": "CVE Program Container", "references": [{"name": "43158", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/43158/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.keiththome.com/rtc-1000-vuln/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-16819", "datePublished": "2017-11-17T17:00:00", "dateReserved": "2017-11-14T00:00:00", "dateUpdated": "2024-08-05T20:35:21.215Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:icontime:rtc-1000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "64E61FF4-AC97-4D37-BD84-373734C5FDAD", "versionEndIncluding": "2.5.7458", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:icontime:rtc-1000:-:*:*:*:*:*:*:*", "matchCriteriaId": "43AEFC81-420E-454E-8678-1C5BBB704F12", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.html) that is then reflected in multiple pages where that field data is utilized, resulting in session hijacking and possible elevation of privileges."}, {"lang": "es", "value": "Una vulnerabilidad Cross-Site Scripting persistente en el reloj de fichar en de Icon Time Systems RTC-1000 v2.5.7458 y anteriores permite que atacantes remotos inyecten c\u00f3digo JavaScript arbitrario en el campo nameFirst (tambi\u00e9n conocido como First Name) para la p\u00e1gina de detalles de empleados (/employee.html) que se refleja en m\u00faltiples paginas en las que se utilizan esos datos de campo. Esto da como resultado un secuestro de sesi\u00f3n y una posible elevaci\u00f3n de privilegios."}], "id": "CVE-2017-16819", "lastModified": "2024-11-21T03:17:01.990", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-11-17T17:29:00.290", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "https://www.exploit-db.com/exploits/43158/"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Mitigation", "Technical Description", "Third Party Advisory"], "url": "https://www.keiththome.com/rtc-1000-vuln/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "https://www.exploit-db.com/exploits/43158/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Mitigation", "Technical Description", "Third Party Advisory"], "url": "https://www.keiththome.com/rtc-1000-vuln/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}