CVE-2022-30311 - Vulnerability Details

Vendors	Products
Festo	Controller Cecc-x-m1 Controller Cecc-x-m1-mv Controller Cecc-x-m1-mv-s1 Controller Cecc-x-m1-mv-s1 Firmware Controller Cecc-x-m1-mv Firmware Controller Cecc-x-m1-y-yjkp Controller Cecc-x-m1-y-yjkp Firmware Controller Cecc-x-m1-ys-l1 Controller Cecc-x-m1-ys-l1 Firmware Controller Cecc-x-m1-ys-l2 Controller Cecc-x-m1-ys-l2 Firmware Controller Cecc-x-m1 Firmware Servo Press Kit Yjkp Servo Press Kit Yjkp- Servo Press Kit Yjkp- Firmware Servo Press Kit Yjkp Firmware

Link	Providers
https://cert.vde.com/en/advisories/VDE-2022-020/

Type	Values Removed	Values Added
Description	In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.	In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

Show plain JSON

{"containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Controller CECC-X-M1 (4407603)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1 (8124922)", "vendor": "Festo", "versions": [{"status": "affected", "version": "4.0.14"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-MV (4407605)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-MV (8124923)", "vendor": "Festo", "versions": [{"status": "affected", "version": "4.0.14"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-MV-S1 (4407606)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-MV-S1 (8124924)", "vendor": "Festo", "versions": [{"status": "affected", "version": "4.0.14"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-YS-L1 (8082793)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-YS-L2 (8082794)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Controller CECC-X-M1-Y-YJKP (4803891)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Servo Press Kit YJKP (8077950)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Servo Press Kit YJKP- (8058596)", "vendor": "Festo", "versions": [{"lessThanOrEqual": "3.8.14", "status": "affected", "version": "3.0.0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Q. Kaiser, M. Illes from ONEKEY Research Labs for reported to Festo"}], "datePublic": "2022-06-07T22:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint &quot;cecc-x-refresh-request&quot; POST request doesn\u2019t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.</p>"}], "value": "In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint \"cecc-x-refresh-request\" POST request doesn\u2019t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-863", "description": "CWE-863 Incorrect Authorization", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-78", "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2023-08-10T07:36:02.588Z"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://cert.vde.com/en/advisories/VDE-2022-020/"}], "source": {"advisory": "VDE-2022-020", "discovery": "EXTERNAL"}, "title": "FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "info@cert.vde.com", "DATE_PUBLIC": "2022-06-08T08:00:00.000Z", "ID": "CVE-2022-30311", "STATE": "PUBLIC", "TITLE": "FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Controller CECC-X-M1 (4407603)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Controller CECC-X-M1 (8124922)", "version": {"version_data": [{"version_affected": "=", "version_name": "4.0.14", "version_value": "4.0.14"}]}}, {"product_name": "Controller CECC-X-M1-MV (4407605)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Controller CECC-X-M1-MV (8124923)", "version": {"version_data": [{"version_affected": "=", "version_name": "4.0.14", "version_value": "4.0.14"}]}}, {"product_name": "Controller CECC-X-M1-MV-S1 (4407606)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Controller CECC-X-M1-MV-S1 (8124924)", "version": {"version_data": [{"version_affected": "=", "version_name": "4.0.14", "version_value": "4.0.14"}]}}, {"product_name": "Controller CECC-X-M1-YS-L1 (8082793)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Controller CECC-X-M1-YS-L2 (8082794)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Controller CECC-X-M1-Y-YJKP (4803891)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Servo Press Kit YJKP (8077950)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}, {"product_name": "Servo Press Kit YJKP- (8058596)", "version": {"version_data": [{"version_affected": "<=", "version_name": "3.0.0", "version_value": "3.8.14"}]}}]}, "vendor_name": "Festo"}]}}, "credit": [{"lang": "eng", "value": "Q. Kaiser, M. Illes from ONEKEY Research Labs for reported to Festo"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint \"cecc-x-refresh-request\" POST request doesn\u2019t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-863 Incorrect Authorization"}]}]}, "references": {"reference_data": [{"name": "https://cert.vde.com/en/advisories/VDE-2022-020/", "refsource": "CONFIRM", "url": "https://cert.vde.com/en/advisories/VDE-2022-020/"}]}, "source": {"advisory": "VDE-2022-020", "discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T06:48:35.703Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cert.vde.com/en/advisories/VDE-2022-020/"}]}]}, "cveMetadata": {"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "assignerShortName": "CERTVDE", "cveId": "CVE-2022-30311", "datePublished": "2022-06-13T13:45:24.763817Z", "dateReserved": "2022-05-06T00:00:00", "dateUpdated": "2024-09-16T23:41:46.855Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1 (4407603) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

1 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1 (8124922) (string)

vendor : Festo (string)

versions : [ »

0 : { »

status : affected (string)

version : 4.0.14 (string)

}

]

}

2 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-MV (4407605) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

3 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-MV (8124923) (string)

vendor : Festo (string)

versions : [ »

0 : { »

status : affected (string)

version : 4.0.14 (string)

}

]

}

4 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-MV-S1 (4407606) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

5 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-MV-S1 (8124924) (string)

vendor : Festo (string)

versions : [ »

0 : { »

status : affected (string)

version : 4.0.14 (string)

}

]

}

6 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-YS-L1 (8082793) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

7 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-YS-L2 (8082794) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

8 : { »

defaultStatus : unaffected (string)

product : Controller CECC-X-M1-Y-YJKP (4803891) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

9 : { »

defaultStatus : unaffected (string)

product : Servo Press Kit YJKP (8077950) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

10 : { »

defaultStatus : unaffected (string)

product : Servo Press Kit YJKP- (8058596) (string)

vendor : Festo (string)

versions : [ »

0 : { »

lessThanOrEqual : 3.8.14 (string)

status : affected (string)

version : 3.0.0 (string)

versionType : custom (string)

}

]

}

]

credits : [ »

0 : { »

lang : en (string)

type : finder (string)

user : 00000000-0000-4000-9000-000000000000 (string)

value : Q. Kaiser, M. Illes from ONEKEY Research Labs for reported to Festo (string)

}

]

datePublic : 2022-06-07T22:00:00.000Z (string)

descriptions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : <p>In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.</p> (string)

}

]

value : In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. (string)

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-863 (string)

description : CWE-863 Incorrect Authorization (string)

lang : en (string)

type : CWE (string)

}

]

}

1 : { »

descriptions : [ »

0 : { »

cweId : CWE-78 (string)

description : CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

orgId : 270ccfa6-a436-4e77-922e-914ec3a9685c (string)

shortName : CERTVDE (string)

dateUpdated : 2023-08-10T07:36:02.588Z (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

}

]

source : { »

advisory : VDE-2022-020 (string)

discovery : EXTERNAL (string)

}

title : FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability (string)

x_generator : { »

engine : Vulnogram 0.0.9 (string)

}

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : info@cert.vde.com (string)

DATE_PUBLIC : 2022-06-08T08:00:00.000Z (string)

ID : CVE-2022-30311 (string)

STATE : PUBLIC (string)

TITLE : FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : Controller CECC-X-M1 (4407603) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

1 : { »

product_name : Controller CECC-X-M1 (8124922) (string)

version : { »

version_data : [ »

0 : { »

version_affected : = (string)

version_name : 4.0.14 (string)

version_value : 4.0.14 (string)

}

]

}

2 : { »

product_name : Controller CECC-X-M1-MV (4407605) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

3 : { »

product_name : Controller CECC-X-M1-MV (8124923) (string)

version : { »

version_data : [ »

0 : { »

version_affected : = (string)

version_name : 4.0.14 (string)

version_value : 4.0.14 (string)

}

]

}

4 : { »

product_name : Controller CECC-X-M1-MV-S1 (4407606) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

5 : { »

product_name : Controller CECC-X-M1-MV-S1 (8124924) (string)

version : { »

version_data : [ »

0 : { »

version_affected : = (string)

version_name : 4.0.14 (string)

version_value : 4.0.14 (string)

}

]

}

6 : { »

product_name : Controller CECC-X-M1-YS-L1 (8082793) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

7 : { »

product_name : Controller CECC-X-M1-YS-L2 (8082794) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

8 : { »

product_name : Controller CECC-X-M1-Y-YJKP (4803891) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

9 : { »

product_name : Servo Press Kit YJKP (8077950) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

10 : { »

product_name : Servo Press Kit YJKP- (8058596) (string)

version : { »

version_data : [ »

0 : { »

version_affected : <= (string)

version_name : 3.0.0 (string)

version_value : 3.8.14 (string)

}

]

}

]

}

vendor_name : Festo (string)

}

]

}

credit : [ »

0 : { »

lang : eng (string)

value : Q. Kaiser, M. Illes from ONEKEY Research Labs for reported to Festo (string)

}

]

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. (string)

}

]

}

generator : { »

engine : Vulnogram 0.0.9 (string)

}

impact : { »

cvss : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : CWE-863 Incorrect Authorization (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

refsource : CONFIRM (string)

url : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

}

]

}

source : { »

advisory : VDE-2022-020 (string)

discovery : EXTERNAL (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T06:48:35.703Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 270ccfa6-a436-4e77-922e-914ec3a9685c (string)

assignerShortName : CERTVDE (string)

cveId : CVE-2022-30311 (string)

datePublished : 2022-06-13T13:45:24.763817Z (string)

dateReserved : 2022-05-06T00:00:00 (string)

dateUpdated : 2024-09-16T23:41:46.855Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F146DE3D-9970-4732-9ECC-7562902BD228", "versionEndIncluding": "3.8.14", "vulnerable": true}, {"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1_firmware:4.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "F2DB1CA3-3E7A-4643-9654-CA5CB83FEF32", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1:-:*:*:*:*:*:*:*", "matchCriteriaId": "65A6F168-897E-4300-9C87-B987EA538473", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C3E5C5DE-4CB0-4C9D-BCFD-BCC45BF46038", "versionEndIncluding": "3.8.14", "vulnerable": true}, {"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:4.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "DD5E3B15-B678-4B06-B6CC-03A5216A21C7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1-mv:-:*:*:*:*:*:*:*", "matchCriteriaId": "DE2D43FB-F307-4F7E-8DEF-F026ACE110CF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EC667C12-0861-4B84-B728-0F200644FCE2", "versionEndIncluding": "3.8.14", "vulnerable": true}, {"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:4.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "4121C15B-B880-468E-B9F0-7C8073AB3411", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1-mv-s1:-:*:*:*:*:*:*:*", "matchCriteriaId": "6AA08A0C-ADD6-4683-90E8-21D537E1E19B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-ys-l1_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "390BAAB8-93B3-40DE-B198-EA203A61DB39", "versionEndIncluding": "3.8.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1-ys-l1:-:*:*:*:*:*:*:*", "matchCriteriaId": "81C720A3-8847-487A-917C-E9863ABC8690", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-ys-l2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B0611087-C956-4F88-8238-AAE3F9AA12DC", "versionEndIncluding": "3.8.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1-ys-l2:-:*:*:*:*:*:*:*", "matchCriteriaId": "C95A7B4C-C5BA-4C57-96A2-BB435ADE1ED8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:controller_cecc-x-m1-y-yjkp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "ECC3B011-E51F-4E33-84AD-7D85899D20BA", "versionEndIncluding": "3.8.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:controller_cecc-x-m1-y-yjkp:-:*:*:*:*:*:*:*", "matchCriteriaId": "C7F3C797-DE05-4FBC-A3BE-08548B746374", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:servo_press_kit_yjkp_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8A787347-8CA6-4A3F-88FE-7086C0BDE2D3", "versionEndIncluding": "3.8.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:servo_press_kit_yjkp:-:*:*:*:*:*:*:*", "matchCriteriaId": "8D75AC25-3E04-49B0-B727-060933EC006D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:festo:servo_press_kit_yjkp-_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "54931207-EBF7-4E8D-B480-48FA17AE94B0", "versionEndIncluding": "3.8.14", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:festo:servo_press_kit_yjkp-:-:*:*:*:*:*:*:*", "matchCriteriaId": "A390CCD1-9EAD-4021-9816-D4508B72467F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint \"cecc-x-refresh-request\" POST request doesn\u2019t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection."}, {"lang": "es", "value": "En la familia de productos CECC-X-M1 de Festo en varias versiones, la petici\u00f3n POST del endpoint http \"cecc-x-refresh-request\" no comprueba la sintaxis del puerto. Esto puede resultar en una ejecuci\u00f3n no autorizada de comandos del sistema con privilegios de root debido a una inyecci\u00f3n de comandos de control de acceso inapropiados"}], "id": "CVE-2022-30311", "lastModified": "2024-11-21T07:02:33.180", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "info@cert.vde.com", "type": "Secondary"}]}, "published": "2022-06-13T14:15:09.300", "references": [{"source": "info@cert.vde.com", "tags": ["Vendor Advisory"], "url": "https://cert.vde.com/en/advisories/VDE-2022-020/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://cert.vde.com/en/advisories/VDE-2022-020/"}], "sourceIdentifier": "info@cert.vde.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}, {"lang": "en", "value": "CWE-863"}], "source": "info@cert.vde.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-78"}, {"lang": "en", "value": "CWE-863"}], "source": "nvd@nist.gov", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F146DE3D-9970-4732-9ECC-7562902BD228 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1_firmware:4.0.14:*:*:*:*:*:*:* (string)

matchCriteriaId : F2DB1CA3-3E7A-4643-9654-CA5CB83FEF32 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 65A6F168-897E-4300-9C87-B987EA538473 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : C3E5C5DE-4CB0-4C9D-BCFD-BCC45BF46038 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-mv_firmware:4.0.14:*:*:*:*:*:*:* (string)

matchCriteriaId : DD5E3B15-B678-4B06-B6CC-03A5216A21C7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1-mv:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DE2D43FB-F307-4F7E-8DEF-F026ACE110CF (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : EC667C12-0861-4B84-B728-0F200644FCE2 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-mv-s1_firmware:4.0.14:*:*:*:*:*:*:* (string)

matchCriteriaId : 4121C15B-B880-468E-B9F0-7C8073AB3411 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1-mv-s1:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6AA08A0C-ADD6-4683-90E8-21D537E1E19B (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-ys-l1_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 390BAAB8-93B3-40DE-B198-EA203A61DB39 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1-ys-l1:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 81C720A3-8847-487A-917C-E9863ABC8690 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-ys-l2_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B0611087-C956-4F88-8238-AAE3F9AA12DC (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1-ys-l2:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C95A7B4C-C5BA-4C57-96A2-BB435ADE1ED8 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:controller_cecc-x-m1-y-yjkp_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : ECC3B011-E51F-4E33-84AD-7D85899D20BA (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:controller_cecc-x-m1-y-yjkp:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C7F3C797-DE05-4FBC-A3BE-08548B746374 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

6 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:servo_press_kit_yjkp_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 8A787347-8CA6-4A3F-88FE-7086C0BDE2D3 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:servo_press_kit_yjkp:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 8D75AC25-3E04-49B0-B727-060933EC006D (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

7 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:festo:servo_press_kit_yjkp-_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 54931207-EBF7-4E8D-B480-48FA17AE94B0 (string)

versionEndIncluding : 3.8.14 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:festo:servo_press_kit_yjkp-:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A390CCD1-9EAD-4021-9816-D4508B72467F (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. (string)

}

1 : { »

lang : es (string)

value : En la familia de productos CECC-X-M1 de Festo en varias versiones, la petición POST del endpoint http "cecc-x-refresh-request" no comprueba la sintaxis del puerto. Esto puede resultar en una ejecución no autorizada de comandos del sistema con privilegios de root debido a una inyección de comandos de control de acceso inapropiados (string)

}

]

id : CVE-2022-30311 (string)

lastModified : 2024-11-21T07:02:33.180 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : HIGH (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 10 (number)

confidentialityImpact : COMPLETE (string)

integrityImpact : COMPLETE (string)

vectorString : AV:N/AC:L/Au:N/C:C/I:C/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 10 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 5.9 (number)

source : info@cert.vde.com (string)

type : Secondary (string)

}

]

}

published : 2022-06-13T14:15:09.300 (string)

references : [ »

0 : { »

source : info@cert.vde.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://cert.vde.com/en/advisories/VDE-2022-020/ (string)

}

]

sourceIdentifier : info@cert.vde.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-78 (string)

}

1 : { »

lang : en (string)

value : CWE-863 (string)

}

]

source : info@cert.vde.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-78 (string)

}

1 : { »

lang : en (string)

value : CWE-863 (string)

}

]

source : nvd@nist.gov (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object