Sign-up

ID

VAR-201906-0897


CVE

CVE-2018-18876


TITLE

Columbia Weather Systems Weather MicroServer Path Traversal Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2019-07793 // CNNVD: CNNVD-201903-660

DESCRIPTION

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a readouts_rd.php directory traversal issue makes it possible to read any file present on the underlying operating system. Columbia Weather MicroServer Contains a path traversal vulnerability.Information may be obtained. ColumbiaWeatherSystemsWeatherMicroServer is a weather monitoring device from Columbia WeatherSystems, USA. An attacker could exploit this vulnerability to read files from the target device directory structure. Multiple cross-site scripting vulnerabilities 3. An authentication bypass vulnerability 4. A remote code-injection vulnerability 5. A denial-of-service vulnerability An attacker may leverage these issues to view arbitrary files within the context of the server, execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information or cause denial-of-service condition. This may aid in further attacks. The vulnerability stems from a network system or product that fails to properly filter resources or special elements in file paths

Trust: 2.52

sources: NVD: CVE-2018-18876 // JVNDB: JVNDB-2018-015657 // CNVD: CNVD-2019-07793 // BID: 107495 // VULHUB: VHN-129479

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-07793

AFFECTED PRODUCTS

vendor:columbiaweathermodel:weather microserverscope:eqversion:ms_2.6.9900

Trust: 1.0

vendor:columbia weathermodel:microserverscope:eqversion:ms_2.6.9900

Trust: 0.8

vendor:columbiamodel:weather systems columbia weather systems weather microserver <=ms 2.6.9900scope: - version: -

Trust: 0.6

vendor:columbiamodel:weather systems weather microserver ms 2.6.9900scope: - version: -

Trust: 0.3

vendor:columbiamodel:weather systems weather microserver ms 2.7.9973scope:neversion: -

Trust: 0.3

sources: CNVD: CNVD-2019-07793 // BID: 107495 // JVNDB: JVNDB-2018-015657 // NVD: CVE-2018-18876

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-18876
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-18876
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2019-07793
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201903-660
value: MEDIUM

Trust: 0.6

VULHUB: VHN-129479
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-18876
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2019-07793
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-129479
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-18876
baseSeverity: MEDIUM
baseScore: 5.3
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 1.4
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2019-07793 // VULHUB: VHN-129479 // JVNDB: JVNDB-2018-015657 // CNNVD: CNNVD-201903-660 // NVD: CVE-2018-18876

PROBLEMTYPE DATA

problemtype:CWE-22

Trust: 1.9

sources: VULHUB: VHN-129479 // JVNDB: JVNDB-2018-015657 // NVD: CVE-2018-18876

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201903-660

TYPE

path traversal

Trust: 0.6

sources: CNNVD: CNNVD-201903-660

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-015657

PATCH
title:Weather MicroServerurl:https://columbiaweather.com/products/weather-monitoring/microserver/
Trust: 0.8
title:ColumbiaWeatherSystemsWeatherMicroServer path traversal vulnerability patchurl:https://www.cnvd.org.cn/patchInfo/show/156841
Trust: 0.6
title:Columbia Weather Systems Weather MicroServer Repair measures for path traversal vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90215
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2019-07793 // 
            
            
            
            JVNDB: JVNDB-2018-015657 // 
            
            
            
            CNNVD: CNNVD-201903-660

EXTERNAL IDS
db:NVDid:CVE-2018-18876
Trust: 3.4
db:ICS CERTid:ICSA-19-078-02
Trust: 3.4
db:BIDid:107495
Trust: 0.9
db:JVNDBid:JVNDB-2018-015657
Trust: 0.8
db:CNNVDid:CNNVD-201903-660
Trust: 0.7
db:CNVDid:CNVD-2019-07793
Trust: 0.6
db:AUSCERTid:ESB-2019.0903
Trust: 0.6
db:VULHUBid:VHN-129479
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2019-07793 // 
            
            
            
            VULHUB: VHN-129479 // 
            
            
            
            BID: 107495 // 
            
            
            
            JVNDB: JVNDB-2018-015657 // 
            
            
            
            CNNVD: CNNVD-201903-660 // 
            
            
            
            NVD: CVE-2018-18876

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-19-078-02
Trust: 3.4
url:https://applied-risk.com/labs/advisories
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2018-18876
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-18876
Trust: 0.8
url:https://www.auscert.org.au/bulletins/77442
Trust: 0.6
url:http://www.securityfocus.com/bid/107495
Trust: 0.6
url:https://columbiaweather.com/
Trust: 0.3
url:https://columbiaweather.com/products/weather-monitoring/microserver/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2019-07793 // 
            
            
            
            VULHUB: VHN-129479 // 
            
            
            
            BID: 107495 // 
            
            
            
            JVNDB: JVNDB-2018-015657 // 
            
            
            
            CNNVD: CNNVD-201903-660 // 
            
            
            
            NVD: CVE-2018-18876

CREDITS
John Elder and Tom Westenberg of Applied Risk.,John Elder and Tom Westenberg of Applied Risk reported these vulnerabilities to NCCIC.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201903-660

SOURCES
db:CNVDid:CNVD-2019-07793
db:VULHUBid:VHN-129479
db:BIDid:107495
db:JVNDBid:JVNDB-2018-015657
db:CNNVDid:CNNVD-201903-660
db:NVDid:CVE-2018-18876

LAST UPDATE DATE
2024-11-23T21:59:51.353000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2019-07793date:2019-03-22T00:00:00
db:VULHUBid:VHN-129479date:2019-06-18T00:00:00
db:BIDid:107495date:2019-03-19T00:00:00
db:JVNDBid:JVNDB-2018-015657date:2019-06-21T00:00:00
db:CNNVDid:CNNVD-201903-660date:2019-06-19T00:00:00
db:NVDid:CVE-2018-18876date:2024-11-21T03:56:48.120

SOURCES RELEASE DATE
db:CNVDid:CNVD-2019-07793date:2019-03-22T00:00:00
db:VULHUBid:VHN-129479date:2019-06-18T00:00:00
db:BIDid:107495date:2019-03-19T00:00:00
db:JVNDBid:JVNDB-2018-015657date:2019-06-21T00:00:00
db:CNNVDid:CNNVD-201903-660date:2019-03-19T00:00:00
db:NVDid:CVE-2018-18876date:2019-06-18T15:15:11.360