CVE-2023-35134 - OpenCVE

Weintek Weincloud v0.13.6 could allow an attacker to reset a password with the corresponding account’s JWT token only.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Weintek	Weincloud

Configuration 1 [-]

cpe:2.3:a:weintek:weincloud:0.13.6:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2023-07-19T21:43:20.562Z

Updated: 2024-08-02T16:23:59.280Z

Reserved: 2023-07-13T15:55:48.879Z

Link: CVE-2023-35134

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-07-19T22:15:11.170

Modified: 2023-07-26T16:18:03.730

Link: CVE-2023-35134

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-35134", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "state": "PUBLISHED", "assignerShortName": "icscert", "dateReserved": "2023-07-13T15:55:48.879Z", "datePublished": "2023-07-19T21:43:20.562Z", "dateUpdated": "2024-08-02T16:23:59.280Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Weincloud", "vendor": "Weintek", "versions": [{"lessThanOrEqual": "0.13.6", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "\u200bHank Chen (PSIRT and Threat Research of TXOne Networks) reported these vulnerabilities to CISA."}], "datePublic": "2023-07-18T17:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">\n\n<span style=\"background-color: rgb(255, 255, 255);\">Weintek Weincloud v<span style=\"background-color: rgb(255, 255, 255);\">0.13.6</span>\n\n could allow an attacker to reset a password with the corresponding account\u2019s JWT token only.</span>\n\n</span>\n\n"}], "value": "\n\n\nWeintek Weincloud v0.13.6\n\n could allow an attacker to reset a password with the corresponding account\u2019s JWT token only.\n\n\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-640", "description": "CWE-640 Weak Password Recovery Mechanism for Forgotten Password", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2023-07-19T21:43:20.562Z"}, "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<p></p>\n\n<p>\u200bWeintek has updated their account API to v0.13.8, which has fixed the issue. This fix does not require any action for users.</p><p><br></p>"}], "value": "\n\n\n\n\n\u200bWeintek has updated their account API to v0.13.8, which has fixed the issue. This fix does not require any action for users.\n\n\n\n\n"}], "source": {"advisory": "ICSA-23-199-04", "discovery": "EXTERNAL"}, "title": "Weintek Weincloud Weak Password Recovery Mechanism for Forgotten Password", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<p>\u200bAdditional mitigations are recommended to help reduce risk:</p><ul><li>\u200bLog in on trusted computers if possible. Log out after usage on un-trusted ones.</li><li>\u200bOn the HMIs, if the online services are not used, set to offline mode for EasyAccess 2.0 or Dashboard services using system reserved addresses.</li><li>\u200bRegularly change passwords to reduce risks.</li><li>\u200bMinimize network exposure for all control system devices and/or systems, and ensure they are not accessible- only applicable devices and/or systems have access to the internet.</li></ul>\n\n<br>"}], "value": "\n\u200bAdditional mitigations are recommended to help reduce risk:\n\n * \u200bLog in on trusted computers if possible. Log out after usage on un-trusted ones.\n * \u200bOn the HMIs, if the online services are not used, set to offline mode for EasyAccess 2.0 or Dashboard services using system reserved addresses.\n * \u200bRegularly change passwords to reduce risks.\n * \u200bMinimize network exposure for all control system devices and/or systems, and ensure they are not accessible- only applicable devices and/or systems have access to the internet.\n\n\n\n\n\n"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T16:23:59.280Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04", "tags": ["x_transferred"]}]}]}}