CVE-2022-47186 - Vulnerability Details - OpenCVE

There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the "upload" directory.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00141.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Generex	Cs141 Cs141 Firmware Ups-cs141

Configuration 1 [-]

AND

cpe:2.3:o:generex:cs141_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:generex:cs141:-:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2022-49961	There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the "upload" directory.

Fixes

Solution

This vulnerability, has been fixed by Generex team in CS141 version 2.06, released on April 2022.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.generex.de/support/changelogs/cs141/page:2
https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141

History

Mon, 23 Sep 2024 19:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Generex ups-cs141
CPEs		cpe:2.3:a:generex:ups-cs141::::::::
Vendors & Products		Generex ups-cs141
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: INCIBE

Published: 2023-09-28T13:26:12.138Z

Updated: 2024-09-23T18:59:29.643Z

Reserved: 2022-12-12T17:08:47.302Z

Link: CVE-2022-47186

Vulnrichment

Updated: 2024-08-03T14:47:29.482Z

NVD

Status : Modified

Published: 2023-09-28T14:15:16.047

Modified: 2024-11-21T07:31:40.113

Link: CVE-2022-47186

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2022-47186", "assignerOrgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516", "state": "PUBLISHED", "assignerShortName": "INCIBE", "dateReserved": "2022-12-12T17:08:47.302Z", "datePublished": "2023-09-28T13:26:12.138Z", "dateUpdated": "2024-09-23T18:59:29.643Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "UPS CS141", "vendor": "Generex", "versions": [{"lessThan": "2.06", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Joel G\u00e1mez Molina (@JoelGMSec)"}], "datePublic": "2023-03-02T23:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the \"upload\" directory."}], "value": "There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the \"upload\" directory."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516", "shortName": "INCIBE", "dateUpdated": "2023-09-28T13:32:39.340Z"}, "references": [{"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141"}, {"tags": ["release-notes"], "url": "https://www.generex.de/support/changelogs/cs141/page:2"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>This vulnerability, has been fixed by Generex team in CS141 version 2.06, released on April 2022.</p>"}], "value": "This vulnerability, has been fixed by Generex team in CS141 version 2.06, released on April 2022.\n\n"}], "source": {"advisory": "INCIBE-2023-0071", "discovery": "EXTERNAL"}, "title": "Unrestricted Upload of File vulnerability in Generex CS141", "x_generator": {"engine": "Vulnogram 0.0.9"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T14:47:29.482Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141", "tags": ["x_transferred"]}, {"tags": ["release-notes", "x_transferred"], "url": "https://www.generex.de/support/changelogs/cs141/page:2"}]}, {"affected": [{"vendor": "generex", "product": "ups-cs141", "cpes": ["cpe:2.3:a:generex:ups-cs141:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "2.06", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-23T18:58:23.012701Z", "id": "CVE-2022-47186", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-23T18:59:29.643Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141", "tags": ["x_transferred"]}, {"url": "https://www.generex.de/support/changelogs/cs141/page:2", "tags": ["release-notes", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T14:47:29.482Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-47186", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-23T18:58:23.012701Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:generex:ups-cs141:*:*:*:*:*:*:*:*"], "vendor": "generex", "product": "ups-cs141", "versions": [{"status": "affected", "version": "0", "lessThan": "2.06", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-23T18:59:24.402Z"}}], "cna": {"title": "Unrestricted Upload of File vulnerability in Generex CS141", "source": {"advisory": "INCIBE-2023-0071", "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Joel G\u00e1mez Molina (@JoelGMSec)"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Generex", "product": "UPS CS141", "versions": [{"status": "affected", "version": "0", "lessThan": "2.06", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "This vulnerability, has been fixed by Generex team in CS141 version 2.06, released on April 2022.\n\n", "supportingMedia": [{"type": "text/html", "value": "<p>This vulnerability, has been fixed by Generex team in CS141 version 2.06, released on April 2022.</p>", "base64": false}]}], "datePublic": "2023-03-02T23:00:00.000Z", "references": [{"url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141"}, {"url": "https://www.generex.de/support/changelogs/cs141/page:2", "tags": ["release-notes"]}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "descriptions": [{"lang": "en", "value": "There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the \"upload\" directory.", "supportingMedia": [{"type": "text/html", "value": "There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the \"upload\" directory.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516", "shortName": "INCIBE", "dateUpdated": "2023-09-28T13:32:39.340Z"}}}, "cveMetadata": {"cveId": "CVE-2022-47186", "state": "PUBLISHED", "dateUpdated": "2024-09-23T18:59:29.643Z", "dateReserved": "2022-12-12T17:08:47.302Z", "assignerOrgId": "0cbda920-cd7f-484a-8e76-bf7f4b7f4516", "datePublished": "2023-09-28T13:26:12.138Z", "assignerShortName": "INCIBE"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:generex:cs141_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "45AC1134-C83A-435F-AFCB-32CC1E691C9E", "versionEndExcluding": "2.06", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:generex:cs141:-:*:*:*:*:*:*:*", "matchCriteriaId": "EE00F7F0-4011-4F62-9E11-1BBDDCE4F46B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the \"upload\" directory."}, {"lang": "es", "value": "Hay una vulnerabilidad de carga de archivos sin restricciones en Generex CS141 por debajo de la versi\u00f3n 2.06. Un atacante podr\u00eda cargar y/o eliminar cualquier tipo de archivo, sin ninguna restricci\u00f3n de formato y sin ninguna autenticaci\u00f3n, en el directorio \"upload\"."}], "id": "CVE-2022-47186", "lastModified": "2024-11-21T07:31:40.113", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "cve-coordination@incibe.es", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-09-28T14:15:16.047", "references": [{"source": "cve-coordination@incibe.es", "tags": ["Release Notes"], "url": "https://www.generex.de/support/changelogs/cs141/page:2"}, {"source": "cve-coordination@incibe.es", "tags": ["Not Applicable"], "url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://www.generex.de/support/changelogs/cs141/page:2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141"}], "sourceIdentifier": "cve-coordination@incibe.es", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "cve-coordination@incibe.es", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-434"}], "source": "nvd@nist.gov", "type": "Primary"}]}