Sign-up

ID

VAR-201510-0196


CVE

CVE-2015-6486


TITLE

Allen-Bradley MicroLogix 1100 and 1400 In the device SQL Injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2015-005653

DESCRIPTION

SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Allen-Bradley MicroLogix is a programmable logic controller (PLC) from Rockwell Automation. Multiple Rockwell Automation Micrologix products are prone to the following security vulnerabilities: 1. A stack-based buffer-overflow vulnerability 2. A denial-of-service vulnerability 3. A cross-site scripting vulnerability 4. An SQL-injection vulnerability An attacker can exploit these issues to execute arbitrary code, crash the device, execute attacker-supplied HTML or JavaScript code in the context of the affected site, steal cookie-based authentication credentials and compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database

Trust: 2.7

sources: NVD: CVE-2015-6486 // JVNDB: JVNDB-2015-005653 // CNVD: CNVD-2015-07307 // BID: 77333 // IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // VULHUB: VHN-84447

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07307

AFFECTED PRODUCTS

vendor:rockwellautomationmodel:micrologix 1100scope:lteversion:14.000

Trust: 1.0

vendor:rockwellautomationmodel:micrologix 1400scope:lteversion:15.002

Trust: 1.0

vendor:rockwell automationmodel:micrologix 1100scope:ltversion:b frn 15.000

Trust: 0.8

vendor:rockwell automationmodel:micrologix 1400scope:ltversion:b frn 15.003

Trust: 0.8

vendor:rockwellmodel:automation micrologixscope:eqversion:1100

Trust: 0.6

vendor:rockwellmodel:automation micrologixscope:eqversion:1400

Trust: 0.6

vendor:rockwellautomationmodel:micrologix 1100scope:eqversion:14.000

Trust: 0.6

vendor:rockwellautomationmodel:micrologix 1400scope:eqversion:15.002

Trust: 0.6

vendor:rockwellmodel:automation micrologix 1766-lk32bwa series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bxba series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bxba series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bxb series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bxb series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bwaa series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bwaa series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32bwa series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32awaa series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32awaa series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32awa series bscope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1766-l32awa series ascope:eqversion:140015.002

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16dwd series bscope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16dwd series ascope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16bwa series bscope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16bwa series ascope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16bbb series bscope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16bbb series ascope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16awa series bscope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix 1763-l16awa series ascope:eqversion:110014.0

Trust: 0.3

vendor:rockwellmodel:automation micrologix frn series bscope:neversion:140015.003

Trust: 0.3

vendor:rockwellmodel:automation micrologix frn series bscope:neversion:110015.0

Trust: 0.3

vendor:micrologix 1100model: - scope:eqversion:*

Trust: 0.2

vendor:micrologix 1400model: - scope:eqversion:*

Trust: 0.2

sources: IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07307 // BID: 77333 // JVNDB: JVNDB-2015-005653 // CNNVD: CNNVD-201510-672 // NVD: CVE-2015-6486

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-6486
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-6486
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2015-07307
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201510-672
value: MEDIUM

Trust: 0.6

IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

VULHUB: VHN-84447
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-6486
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-07307
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-84447
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07307 // VULHUB: VHN-84447 // JVNDB: JVNDB-2015-005653 // CNNVD: CNNVD-201510-672 // NVD: CVE-2015-6486

PROBLEMTYPE DATA

problemtype:CWE-89

Trust: 1.9

sources: VULHUB: VHN-84447 // JVNDB: JVNDB-2015-005653 // NVD: CVE-2015-6486

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201510-672

TYPE

SQL injection

Trust: 0.8

sources: IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201510-672

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-005653

PATCH
title:MicroLogixシステムurl:http://ab.rockwellautomation.com/ja/Programmable-Controllers/MicroLogix-Systems
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-005653

EXTERNAL IDS
db:NVDid:CVE-2015-6486
Trust: 3.6
db:ICS CERTid:ICSA-15-300-03
Trust: 3.4
db:CNNVDid:CNNVD-201510-672
Trust: 0.9
db:CNVDid:CNVD-2015-07307
Trust: 0.8
db:JVNDBid:JVNDB-2015-005653
Trust: 0.8
db:BIDid:70568
Trust: 0.6
db:BIDid:77333
Trust: 0.3
db:IVDid:7C67E9BC-2351-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:VULHUBid:VHN-84447
Trust: 0.1
sources:
            
            
            IVD: 7c67e9bc-2351-11e6-abef-000c29c66e3d // 
            
            
            
            CNVD: CNVD-2015-07307 // 
            
            
            
            VULHUB: VHN-84447 // 
            
            
            
            BID: 77333 // 
            
            
            
            JVNDB: JVNDB-2015-005653 // 
            
            
            
            CNNVD: CNNVD-201510-672 // 
            
            
            
            NVD: CVE-2015-6486

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-15-300-03
Trust: 3.4
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6486
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6486
Trust: 0.8
url:http://www.rockwellautomation.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2015-07307 // 
            
            
            
            VULHUB: VHN-84447 // 
            
            
            
            BID: 77333 // 
            
            
            
            JVNDB: JVNDB-2015-005653 // 
            
            
            
            CNNVD: CNNVD-201510-672 // 
            
            
            
            NVD: CVE-2015-6486

CREDITS
Ilya Karpov of Positive Technologies, David Atch of CyberX, and Aditya Sood
Trust: 0.3
sources:
            
            
            BID: 77333

SOURCES
db:IVDid:7c67e9bc-2351-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2015-07307
db:VULHUBid:VHN-84447
db:BIDid:77333
db:JVNDBid:JVNDB-2015-005653
db:CNNVDid:CNNVD-201510-672
db:NVDid:CVE-2015-6486

LAST UPDATE DATE
2025-04-13T23:09:46.501000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-07307date:2015-11-05T00:00:00
db:VULHUBid:VHN-84447date:2015-10-28T00:00:00
db:BIDid:77333date:2015-10-27T00:00:00
db:JVNDBid:JVNDB-2015-005653date:2015-10-29T00:00:00
db:CNNVDid:CNNVD-201510-672date:2015-10-29T00:00:00
db:NVDid:CVE-2015-6486date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:IVDid:7c67e9bc-2351-11e6-abef-000c29c66e3ddate:2015-11-05T00:00:00
db:CNVDid:CNVD-2015-07307date:2015-11-05T00:00:00
db:VULHUBid:VHN-84447date:2015-10-28T00:00:00
db:BIDid:77333date:2015-10-27T00:00:00
db:JVNDBid:JVNDB-2015-005653date:2015-10-29T00:00:00
db:CNNVDid:CNNVD-201510-672date:2015-10-29T00:00:00
db:NVDid:CVE-2015-6486date:2015-10-28T10:59:11.027