CVE-2024-25136 - Vulnerability Details - OpenCVE

There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00222.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2024-22484	There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.

Fixes

Solution

AutomationDirect recommends that users update C-MORE EA9 HMI to V6.78 https://www.automationdirect.com/support/software-downloads .

Workaround

No workaround given by the vendor.

References

Link	Providers
https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2024-03-26T22:53:41.589Z

Updated: 2024-08-08T14:49:09.314Z

Reserved: 2024-02-05T21:38:12.857Z

Link: CVE-2024-25136

Vulnrichment

Updated: 2024-08-01T23:36:21.608Z

NVD

Status : Awaiting Analysis

Published: 2024-03-26T23:15:46.663

Modified: 2024-11-21T09:00:19.150

Link: CVE-2024-25136

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-25136", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "state": "PUBLISHED", "assignerShortName": "icscert", "dateReserved": "2024-02-05T21:38:12.857Z", "datePublished": "2024-03-26T22:53:41.589Z", "dateUpdated": "2024-08-08T14:49:09.314Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T6CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T7CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA0-T7CL-R", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T8CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T10CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T10WCL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T12CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T15CL", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-T15CL-R", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-RHMI", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "c"}]}, {"defaultStatus": "unaffected", "product": "C-MORE EA9 HMI EA9-PGMSW", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "6.77", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Tomer Goldschmidt of Claroty Research - Team82 reported these vulnerabilities to CISA."}], "datePublic": "2024-03-26T19:18:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.</span>\n\n"}], "value": "\nThere is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Path Traversal", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2024-03-26T23:16:37.162Z"}, "references": [{"tags": ["government-resource"], "url": "https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">AutomationDirect recommends that users update C-MORE EA9 HMI to </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.automationdirect.com/support/software-downloads\">V6.78</a><span style=\"background-color: rgb(255, 255, 255);\">.</span>\n\n<br>"}], "value": "\nAutomationDirect recommends that users update C-MORE EA9 HMI to V6.78 https://www.automationdirect.com/support/software-downloads .\n\n"}], "source": {"advisory": "ICSA-24-086-01", "discovery": "EXTERNAL"}, "title": "AutomationDirect C-MORE EA9 HMI Path Traversal", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:36:21.608Z"}, "title": "CVE Program Container", "references": [{"tags": ["government-resource", "x_transferred"], "url": "https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01"}]}, {"affected": [{"vendor": "automationdirect", "product": "c-more_ea9-t6cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t6cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t7cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t7cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t7cl-r_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t7cl-r_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t8cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t8cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t10cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t10cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t10wcl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t10wcl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t12cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t12cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t15cl_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t15cl_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-t15cl-r_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t15cl-r_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-rhmi_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-rhmi_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}, {"vendor": "automationdirect", "product": "c-more_ea9-pgmsw_firmware", "cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-pgmsw_firmware:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.77", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-08T14:49:02.509046Z", "id": "CVE-2024-25136", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-08T14:49:09.314Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01", "tags": ["government-resource", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:36:21.608Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-25136", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-08T14:49:02.509046Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t6cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t6cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t7cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t7cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t7cl-r_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t7cl-r_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t8cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t8cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t10cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t10cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t10wcl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t10wcl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t12cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t12cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t15cl_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t15cl_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-t15cl-r_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-t15cl-r_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-rhmi_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-rhmi_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:automationdirect:c-more_ea9-pgmsw_firmware:*:*:*:*:*:*:*:*"], "vendor": "automationdirect", "product": "c-more_ea9-pgmsw_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-29T11:26:09.194Z"}}], "cna": {"title": "AutomationDirect C-MORE EA9 HMI Path Traversal", "source": {"advisory": "ICSA-24-086-01", "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Tomer Goldschmidt of Claroty Research - Team82 reported these vulnerabilities to CISA."}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T6CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T7CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA0-T7CL-R", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T8CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T10CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T10WCL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T12CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T15CL", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-T15CL-R", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-RHMI", "versions": [{"status": "affected", "version": "0", "versionType": "c", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "C-MORE EA9 HMI EA9-PGMSW", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "6.77"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "\nAutomationDirect recommends that users update C-MORE EA9 HMI to V6.78 https://www.automationdirect.com/support/software-downloads .\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">AutomationDirect recommends that users update C-MORE EA9 HMI to </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.automationdirect.com/support/software-downloads\">V6.78</a><span style=\"background-color: rgb(255, 255, 255);\">.</span>\n\n<br>", "base64": false}]}], "datePublic": "2024-03-26T19:18:00.000Z", "references": [{"url": "https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01", "tags": ["government-resource"]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "\nThere is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.</span>\n\n", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Path Traversal"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2024-03-26T23:16:37.162Z"}}}, "cveMetadata": {"cveId": "CVE-2024-25136", "state": "PUBLISHED", "dateUpdated": "2024-08-08T14:49:09.314Z", "dateReserved": "2024-02-05T21:38:12.857Z", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "datePublished": "2024-03-26T22:53:41.589Z", "assignerShortName": "icscert"}, "dataVersion": "5.1"}