Sign-up

ID

VAR-201807-0341


CVE

CVE-2018-10616


TITLE

ABB Panel Builder 800 Input validation vulnerability

Trust: 1.4

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // CNVD: CNVD-2018-18146 // CNNVD: CNNVD-201807-1323

DESCRIPTION

ABB Panel Builder 800 all versions has an improper input validation vulnerability which may allow an attacker to insert and run arbitrary code on a computer where the affected product is used. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of the UserSettings parameter of the ABB SIMATIC_TI500 OPC Driver. The issue results from the lack of proper validation of a user-supplied string before using it as a format specifier. An attacker can leverage this vulnerability to execute code under the context of an administrator. ABB Panel Builder 800 is a web-based HMI (Human Machine Interface) system from ABB, Switzerland. Failed exploit attempts will result in denial-of-service conditions

Trust: 10.71

sources: NVD: CVE-2018-10616 // ZDI: ZDI-18-885 // ZDI: ZDI-18-903 // ZDI: ZDI-18-896 // ZDI: ZDI-18-908 // ZDI: ZDI-18-902 // ZDI: ZDI-18-895 // ZDI: ZDI-18-897 // ZDI: ZDI-18-894 // ZDI: ZDI-18-891 // ZDI: ZDI-18-900 // ZDI: ZDI-18-888 // ZDI: ZDI-18-912 // ZDI: ZDI-18-910 // ZDI: ZDI-18-889 // CNVD: CNVD-2018-18146 // BID: 104882 // IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // CNVD: CNVD-2018-18146

AFFECTED PRODUCTS

vendor:abbmodel:panel builder 800scope: - version: -

Trust: 9.8

vendor:abbmodel:panel builder 800scope:eqversion: -

Trust: 1.6

vendor:abbmodel:panel builderscope:eqversion:800

Trust: 0.6

vendor:abbmodel:panel builderscope:eqversion:8000

Trust: 0.3

vendor:panel builder 800model: - scope:eqversion: -

Trust: 0.2

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-888 // ZDI: ZDI-18-900 // ZDI: ZDI-18-891 // ZDI: ZDI-18-885 // ZDI: ZDI-18-894 // ZDI: ZDI-18-895 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903 // CNVD: CNVD-2018-18146 // BID: 104882 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI: CVE-2018-10616
value: MEDIUM

Trust: 5.6

ZDI: CVE-2018-10616
value: HIGH

Trust: 4.2

nvd@nist.gov: CVE-2018-10616
value: HIGH

Trust: 1.0

CNVD: CNVD-2018-18146
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201807-1323
value: HIGH

Trust: 0.6

IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1
value: HIGH

Trust: 0.2

ZDI: CVE-2018-10616
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 5.6

nvd@nist.gov: CVE-2018-10616
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 5.2

CNVD: CNVD-2018-18146
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

nvd@nist.gov: CVE-2018-10616
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.0

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-888 // ZDI: ZDI-18-900 // ZDI: ZDI-18-891 // ZDI: ZDI-18-885 // ZDI: ZDI-18-894 // ZDI: ZDI-18-895 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903 // CNVD: CNVD-2018-18146 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.0

sources: NVD: CVE-2018-10616

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201807-1323

TYPE

Input validation error

Trust: 1.1

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // BID: 104882 // CNNVD: CNNVD-201807-1323

PATCH

title:ABB has issued an update to correct this vulnerability.url:https://library.e.abb.com/public/30b77e0dc904475295401b66ec74cd3c/3BSE092089_A_en_SECURITY_-_Panel_Builder_800_Improper_input_validation_vulnerability.pdf?x-sign=OyK2T7i661JL8oQxBk+0/iWUV+hinpu8Nt6nvVmhw581vp4nkzkQbe1JSiJQPtp0

Trust: 9.8

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-888 // ZDI: ZDI-18-900 // ZDI: ZDI-18-891 // ZDI: ZDI-18-885 // ZDI: ZDI-18-894 // ZDI: ZDI-18-895 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903

EXTERNAL IDS

db:NVDid:CVE-2018-10616

Trust: 12.5

db:ICS CERTid:ICSA-18-198-01

Trust: 2.5

db:BIDid:104882

Trust: 1.9

db:CNVDid:CNVD-2018-18146

Trust: 0.8

db:CNNVDid:CNNVD-201807-1323

Trust: 0.8

db:ZDI_CANid:ZDI-CAN-6143

Trust: 0.7

db:ZDIid:ZDI-18-897

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6085

Trust: 0.7

db:ZDIid:ZDI-18-889

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6422

Trust: 0.7

db:ZDIid:ZDI-18-910

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6423

Trust: 0.7

db:ZDIid:ZDI-18-912

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6084

Trust: 0.7

db:ZDIid:ZDI-18-888

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6140

Trust: 0.7

db:ZDIid:ZDI-18-900

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6087

Trust: 0.7

db:ZDIid:ZDI-18-891

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6052

Trust: 0.7

db:ZDIid:ZDI-18-885

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6099

Trust: 0.7

db:ZDIid:ZDI-18-894

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6136

Trust: 0.7

db:ZDIid:ZDI-18-895

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6227

Trust: 0.7

db:ZDIid:ZDI-18-902

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6420

Trust: 0.7

db:ZDIid:ZDI-18-908

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6142

Trust: 0.7

db:ZDIid:ZDI-18-896

Trust: 0.7

db:ZDI_CANid:ZDI-CAN-6228

Trust: 0.7

db:ZDIid:ZDI-18-903

Trust: 0.7

db:IVDid:E2F971A1-39AB-11E9-BB19-000C29342CB1

Trust: 0.2

sources: IVD: e2f971a1-39ab-11e9-bb19-000c29342cb1 // ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-888 // ZDI: ZDI-18-900 // ZDI: ZDI-18-891 // ZDI: ZDI-18-885 // ZDI: ZDI-18-894 // ZDI: ZDI-18-895 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903 // CNVD: CNVD-2018-18146 // BID: 104882 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

REFERENCES

url:https://library.e.abb.com/public/30b77e0dc904475295401b66ec74cd3c/3bse092089_a_en_security_-_panel_builder_800_improper_input_validation_vulnerability.pdf?x-sign=oyk2t7i661jl8oqxbk+0/iwuv+hinpu8nt6nvvmhw581vp4nkzkqbe1jsijqptp0

Trust: 9.8

url:https://ics-cert.us-cert.gov/advisories/icsa-18-198-01

Trust: 2.5

url:http://search-ext.abb.com/library/download.aspx?documentid=3bse092089&action=launch

Trust: 1.6

url:http://www.securityfocus.com/bid/104882

Trust: 1.6

url:http://search-ext.abb.com/library/download.aspx?documentid=3bse092089&action=launch

Trust: 0.6

url:http://www.abb.com/

Trust: 0.3

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-889 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-888 // ZDI: ZDI-18-900 // ZDI: ZDI-18-891 // ZDI: ZDI-18-885 // ZDI: ZDI-18-894 // ZDI: ZDI-18-895 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903 // CNVD: CNVD-2018-18146 // BID: 104882 // CNNVD: CNNVD-201807-1323 // NVD: CVE-2018-10616

CREDITS

Michael DePlante - Leahy Center for Digital Investigation at Champlain College

Trust: 6.3

sources: ZDI: ZDI-18-897 // ZDI: ZDI-18-910 // ZDI: ZDI-18-912 // ZDI: ZDI-18-900 // ZDI: ZDI-18-894 // ZDI: ZDI-18-902 // ZDI: ZDI-18-908 // ZDI: ZDI-18-896 // ZDI: ZDI-18-903

SOURCES

db:IVDid:e2f971a1-39ab-11e9-bb19-000c29342cb1
db:ZDIid:ZDI-18-897
db:ZDIid:ZDI-18-889
db:ZDIid:ZDI-18-910
db:ZDIid:ZDI-18-912
db:ZDIid:ZDI-18-888
db:ZDIid:ZDI-18-900
db:ZDIid:ZDI-18-891
db:ZDIid:ZDI-18-885
db:ZDIid:ZDI-18-894
db:ZDIid:ZDI-18-895
db:ZDIid:ZDI-18-902
db:ZDIid:ZDI-18-908
db:ZDIid:ZDI-18-896
db:ZDIid:ZDI-18-903
db:CNVDid:CNVD-2018-18146
db:BIDid:104882
db:CNNVDid:CNNVD-201807-1323
db:NVDid:CVE-2018-10616

LAST UPDATE DATE

2026-04-18T00:09:09.397000+00:00


SOURCES UPDATE DATE

db:ZDIid:ZDI-18-897date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-889date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-910date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-912date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-888date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-900date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-891date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-885date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-894date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-895date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-902date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-908date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-896date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-903date:2018-08-10T00:00:00
db:CNVDid:CNVD-2018-18146date:2018-09-10T00:00:00
db:BIDid:104882date:2018-07-17T00:00:00
db:CNNVDid:CNNVD-201807-1323date:2019-10-17T00:00:00
db:NVDid:CVE-2018-10616date:2024-11-21T03:41:40.343

SOURCES RELEASE DATE

db:IVDid:e2f971a1-39ab-11e9-bb19-000c29342cb1date:2018-09-10T00:00:00
db:ZDIid:ZDI-18-897date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-889date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-910date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-912date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-888date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-900date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-891date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-885date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-894date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-895date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-902date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-908date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-896date:2018-08-10T00:00:00
db:ZDIid:ZDI-18-903date:2018-08-10T00:00:00
db:CNVDid:CNVD-2018-18146date:2018-09-10T00:00:00
db:BIDid:104882date:2018-07-17T00:00:00
db:CNNVDid:CNNVD-201807-1323date:2018-07-19T00:00:00
db:NVDid:CVE-2018-10616date:2018-07-18T15:29:00.220