Details of VAR-201906-0898

ID

VAR-201906-0898

CVE

CVE-2018-18877

TITLE

Columbia Weather MicroServer Authentication vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-015658

DESCRIPTION

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, an authenticated web user can access an alternative configuration page config_main.php that allows manipulation of the device. Columbia Weather MicroServer Contains an authentication vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. ColumbiaWeatherSystemsWeatherMicroServer is a weather monitoring device from Columbia WeatherSystems, USA. An authorized access vulnerability exists in ColumbiaWeatherSystemsWeatherMicroServerMS_2.6.9900 and earlier. An attacker could exploit the vulnerability to bypass authentication, manipulate the device, and cause a denial of service. A directory traversal vulnerability 2. Multiple cross-site scripting vulnerabilities 3. A remote code-injection vulnerability 5. A denial-of-service vulnerability An attacker may leverage these issues to view arbitrary files within the context of the server, execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information or cause denial-of-service condition. This may aid in further attacks. This vulnerability stems from the lack of authentication measures or insufficient authentication strength in network systems or products

Trust: 2.52

sources: NVD: CVE-2018-18877 // JVNDB: JVNDB-2018-015658 // CNVD: CNVD-2019-07788 // BID: 107495 // VULHUB: VHN-129480

IOT TAXONOMY

category:

['ICS', 'Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2019-07788

AFFECTED PRODUCTS

vendor:	columbiaweather	model:	weather microserver	scope:	eq	version:	ms_2.6.9900	Trust: 1.0
vendor:	columbia weather	model:	microserver	scope:	eq	version:	ms_2.6.9900	Trust: 0.8
vendor:	columbia	model:	weather systems columbia weather systems weather microserver <=ms 2.6.9900	scope:	-	version:	-	Trust: 0.6
vendor:	columbia	model:	weather systems weather microserver ms 2.6.9900	scope:	-	version:	-	Trust: 0.3
vendor:	columbia	model:	weather systems weather microserver ms 2.7.9973	scope:	ne	version:	-	Trust: 0.3

sources: CNVD: CNVD-2019-07788 // BID: 107495 // JVNDB: JVNDB-2018-015658 // NVD: CVE-2018-18877

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-18877
value:	HIGH
Trust: 1.0
NVD:	CVE-2018-18877
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2019-07788
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201903-645
value:	HIGH
Trust: 0.6
VULHUB:	VHN-129480
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-18877
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2019-07788
severity:	HIGH
baseScore:	8.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	7.8
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-129480
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-18877
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2019-07788 // VULHUB: VHN-129480 // JVNDB: JVNDB-2018-015658 // CNNVD: CNNVD-201903-645 // NVD: CVE-2018-18877

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.9

sources: VULHUB: VHN-129480 // JVNDB: JVNDB-2018-015658 // NVD: CVE-2018-18877

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201903-645

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201903-645

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-015658

PATCH

title:	Weather MicroServer	url:	https://columbiaweather.com/products/weather-monitoring/microserver/	Trust: 0.8
title:	ColumbiaWeatherSystemsWeatherMicroServer is not authorized to access vulnerable patches	url:	https://www.cnvd.org.cn/patchInfo/show/156835	Trust: 0.6
title:	Columbia Weather Systems Weather MicroServer Remediation measures for authorization problem vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90203	Trust: 0.6

sources: CNVD: CNVD-2019-07788 // JVNDB: JVNDB-2018-015658 // CNNVD: CNNVD-201903-645

EXTERNAL IDS

db:	NVD	id:	CVE-2018-18877	Trust: 3.4
db:	ICS CERT	id:	ICSA-19-078-02	Trust: 3.4
db:	BID	id:	107495	Trust: 0.9
db:	JVNDB	id:	JVNDB-2018-015658	Trust: 0.8
db:	CNNVD	id:	CNNVD-201903-645	Trust: 0.7
db:	CNVD	id:	CNVD-2019-07788	Trust: 0.6
db:	AUSCERT	id:	ESB-2019.0903	Trust: 0.6
db:	VULHUB	id:	VHN-129480	Trust: 0.1

sources: CNVD: CNVD-2019-07788 // VULHUB: VHN-129480 // BID: 107495 // JVNDB: JVNDB-2018-015658 // CNNVD: CNNVD-201903-645 // NVD: CVE-2018-18877

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-19-078-02	Trust: 3.4
url:	https://applied-risk.com/labs/advisories	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2018-18877	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-18877	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/77442	Trust: 0.6
url:	http://www.securityfocus.com/bid/107495	Trust: 0.6
url:	https://columbiaweather.com/	Trust: 0.3
url:	https://columbiaweather.com/products/weather-monitoring/microserver/	Trust: 0.3

sources: CNVD: CNVD-2019-07788 // VULHUB: VHN-129480 // BID: 107495 // JVNDB: JVNDB-2018-015658 // CNNVD: CNNVD-201903-645 // NVD: CVE-2018-18877

CREDITS

John Elder and Tom Westenberg of Applied Risk.,John Elder and Tom Westenberg of Applied Risk reported these vulnerabilities to NCCIC.

Trust: 0.6

sources: CNNVD: CNNVD-201903-645

SOURCES

db:	CNVD	id:	CNVD-2019-07788
db:	VULHUB	id:	VHN-129480
db:	BID	id:	107495
db:	JVNDB	id:	JVNDB-2018-015658
db:	CNNVD	id:	CNNVD-201903-645
db:	NVD	id:	CVE-2018-18877

LAST UPDATE DATE

2024-11-23T21:59:51.316000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-07788	date:	2019-03-22T00:00:00
db:	VULHUB	id:	VHN-129480	date:	2019-06-18T00:00:00
db:	BID	id:	107495	date:	2019-03-19T00:00:00
db:	JVNDB	id:	JVNDB-2018-015658	date:	2019-06-21T00:00:00
db:	CNNVD	id:	CNNVD-201903-645	date:	2019-06-19T00:00:00
db:	NVD	id:	CVE-2018-18877	date:	2024-11-21T03:56:48.270

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2019-07788	date:	2019-03-22T00:00:00
db:	VULHUB	id:	VHN-129480	date:	2019-06-18T00:00:00
db:	BID	id:	107495	date:	2019-03-19T00:00:00
db:	JVNDB	id:	JVNDB-2018-015658	date:	2019-06-21T00:00:00
db:	CNNVD	id:	CNNVD-201903-645	date:	2019-03-19T00:00:00
db:	NVD	id:	CVE-2018-18877	date:	2019-06-18T15:15:11.407