CVE-2023-25915 - OpenCVE

Due to improper input validation, a remote attacker could execute arbitrary commands on the target system.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Danfoss	Ak-sm 800a Ak-sm 800a Firmware

Configuration 1 [-]

AND

cpe:2.3:o:danfoss:ak-sm_800a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:danfoss:ak-sm_800a:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://csirt.divd.nl/CVE-2023-25915
https://csirt.divd.nl/DIVD-2023-00025

History

No history.

MITRE

Status: PUBLISHED

Assigner: DIVD

Published: 2023-08-21T20:30:02.375Z

Updated: 2024-08-06T12:32:29.655Z

Reserved: 2023-02-16T14:22:41.966Z

Link: CVE-2023-25915

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-08-21T21:15:09.170

Modified: 2023-08-24T21:37:26.140

Link: CVE-2023-25915

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-25915", "assignerOrgId": "b87402ff-ae37-4194-9dae-31abdbd6f217", "state": "PUBLISHED", "assignerShortName": "DIVD", "dateReserved": "2023-02-16T14:22:41.966Z", "datePublished": "2023-08-21T20:30:02.375Z", "dateUpdated": "2024-08-06T12:32:29.655Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "AK-SM800A", "vendor": "Danfoss", "versions": [{"status": "affected", "version": "< 3.3"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Synacktiv"}, {"lang": "en", "type": "analyst", "user": "00000000-0000-4000-9000-000000000000", "value": "Max van der Horst (DIVD)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Due to improper input validation, a remote attacker could execute arbitrary commands on the target system."}], "value": "Due to improper input validation, a remote attacker could execute arbitrary commands on the target system."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b87402ff-ae37-4194-9dae-31abdbd6f217", "shortName": "DIVD", "dateUpdated": "2024-08-06T12:32:29.655Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://csirt.divd.nl/CVE-2023-25915"}, {"tags": ["third-party-advisory"], "url": "https://csirt.divd.nl/DIVD-2023-00025"}], "source": {"discovery": "EXTERNAL"}, "title": "Remote Command Execution in Danfoss AK-SM800A", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Upgrade to the latest patch, which is version 3.3."}], "value": "Upgrade to the latest patch, which is version 3.3."}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T11:32:12.619Z"}, "title": "CVE Program Container", "references": [{"tags": ["third-party-advisory", "x_transferred"], "url": "https://csirt.divd.nl/CVE-2023-25915"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://csirt.divd.nl/DIVD-2023-00025"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:danfoss:ak-sm_800a_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FE57274-BA94-492A-9D3A-A74F047E9EF4", "versionEndIncluding": "3.3", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:danfoss:ak-sm_800a:-:*:*:*:*:*:*:*", "matchCriteriaId": "A4EC90A1-18C1-4509-96DF-A528E2AF5989", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Due to improper input validation, a remote attacker could execute arbitrary commands on the target system."}, {"lang": "es", "value": "Debido a una validaci\u00f3n de entrada incorrecta, un atacante remoto podr\u00eda ejecutar comandos arbitrarios en el sistema objetivo."}], "id": "CVE-2023-25915", "lastModified": "2023-08-24T21:37:26.140", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0, "source": "csirt@divd.nl", "type": "Secondary"}]}, "published": "2023-08-21T21:15:09.170", "references": [{"source": "csirt@divd.nl", "tags": ["Third Party Advisory"], "url": "https://csirt.divd.nl/CVE-2023-25915"}, {"source": "csirt@divd.nl", "tags": ["Third Party Advisory"], "url": "https://csirt.divd.nl/DIVD-2023-00025"}], "sourceIdentifier": "csirt@divd.nl", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "csirt@divd.nl", "type": "Secondary"}]}