Sign-up

ID

VAR-201906-0901


CVE

CVE-2018-18880


TITLE

Columbia Weather MicroServer Firmware cross-site scripting vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-015643

DESCRIPTION

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a networkdiags.php reflected Cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script. ColumbiaWeatherSystemsWeatherMicroServer is a weather monitoring device from Columbia WeatherSystems, USA. A cross-site scripting vulnerability exists in ColumbiaWeatherSystemsWeatherMicroServerMS_2.6.9900 and earlier that caused the program to fail to validate input correctly. A remote attacker can exploit this vulnerability to execute arbitrary Wbe scripts. A directory traversal vulnerability 2. Multiple cross-site scripting vulnerabilities 3. An authentication bypass vulnerability 4. A remote code-injection vulnerability 5. A denial-of-service vulnerability An attacker may leverage these issues to view arbitrary files within the context of the server, execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information or cause denial-of-service condition. This may aid in further attacks

Trust: 2.52

sources: NVD: CVE-2018-18880 // JVNDB: JVNDB-2018-015643 // CNVD: CNVD-2019-07785 // BID: 107495 // VULHUB: VHN-129484

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-07785

AFFECTED PRODUCTS

vendor:columbiaweathermodel:weather microserverscope:eqversion:ms_2.6.9900

Trust: 1.0

vendor:columbia weathermodel:microserverscope:eqversion:ms_2.6.9900

Trust: 0.8

vendor:columbiamodel:weather systems columbia weather systems weather microserver <=ms 2.6.9900scope: - version: -

Trust: 0.6

vendor:columbiamodel:weather systems weather microserver ms 2.6.9900scope: - version: -

Trust: 0.3

vendor:columbiamodel:weather systems weather microserver ms 2.7.9973scope:neversion: -

Trust: 0.3

sources: CNVD: CNVD-2019-07785 // BID: 107495 // JVNDB: JVNDB-2018-015643 // NVD: CVE-2018-18880

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-18880
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-18880
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2019-07785
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201903-632
value: MEDIUM

Trust: 0.6

VULHUB: VHN-129484
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2018-18880
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2019-07785
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-129484
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-18880
baseSeverity: MEDIUM
baseScore: 5.4
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 2.3
impactScore: 2.7
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2019-07785 // VULHUB: VHN-129484 // JVNDB: JVNDB-2018-015643 // CNNVD: CNNVD-201903-632 // NVD: CVE-2018-18880

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-129484 // JVNDB: JVNDB-2018-015643 // NVD: CVE-2018-18880

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201903-632

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201903-632

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-015643

PATCH
title:Weather MicroServerurl:https://columbiaweather.com/products/weather-monitoring/microserver/
Trust: 0.8
title:Patch for ColumbiaWeatherSystemsWeatherMicroServer Cross-Site Scripting Vulnerability (CNVD-2019-07785)url:https://www.cnvd.org.cn/patchInfo/show/156837
Trust: 0.6
title:Columbia Weather Systems Weather MicroServer Fixes for cross-site scripting vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90194
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2019-07785 // 
            
            
            
            JVNDB: JVNDB-2018-015643 // 
            
            
            
            CNNVD: CNNVD-201903-632

EXTERNAL IDS
db:NVDid:CVE-2018-18880
Trust: 3.4
db:ICS CERTid:ICSA-19-078-02
Trust: 3.4
db:BIDid:107495
Trust: 0.9
db:JVNDBid:JVNDB-2018-015643
Trust: 0.8
db:CNVDid:CNVD-2019-07785
Trust: 0.6
db:AUSCERTid:ESB-2019.0903
Trust: 0.6
db:CNNVDid:CNNVD-201903-632
Trust: 0.6
db:VULHUBid:VHN-129484
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2019-07785 // 
            
            
            
            VULHUB: VHN-129484 // 
            
            
            
            BID: 107495 // 
            
            
            
            JVNDB: JVNDB-2018-015643 // 
            
            
            
            CNNVD: CNNVD-201903-632 // 
            
            
            
            NVD: CVE-2018-18880

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-19-078-02
Trust: 3.4
url:https://applied-risk.com/labs/advisories
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2018-18880
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-18880
Trust: 0.8
url:https://www.auscert.org.au/bulletins/77442
Trust: 0.6
url:http://www.securityfocus.com/bid/107495
Trust: 0.6
url:https://columbiaweather.com/
Trust: 0.3
url:https://columbiaweather.com/products/weather-monitoring/microserver/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2019-07785 // 
            
            
            
            VULHUB: VHN-129484 // 
            
            
            
            BID: 107495 // 
            
            
            
            JVNDB: JVNDB-2018-015643 // 
            
            
            
            CNNVD: CNNVD-201903-632 // 
            
            
            
            NVD: CVE-2018-18880

CREDITS
John Elder and Tom Westenberg of Applied Risk
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201903-632

SOURCES
db:CNVDid:CNVD-2019-07785
db:VULHUBid:VHN-129484
db:BIDid:107495
db:JVNDBid:JVNDB-2018-015643
db:CNNVDid:CNNVD-201903-632
db:NVDid:CVE-2018-18880

LAST UPDATE DATE
2024-11-23T21:59:50.883000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2019-07785date:2019-03-22T00:00:00
db:VULHUBid:VHN-129484date:2019-06-18T00:00:00
db:BIDid:107495date:2019-03-19T00:00:00
db:JVNDBid:JVNDB-2018-015643date:2019-06-21T00:00:00
db:CNNVDid:CNNVD-201903-632date:2019-06-19T00:00:00
db:NVDid:CVE-2018-18880date:2024-11-21T03:56:48.740

SOURCES RELEASE DATE
db:CNVDid:CNVD-2019-07785date:2019-03-22T00:00:00
db:VULHUBid:VHN-129484date:2019-06-18T00:00:00
db:BIDid:107495date:2019-03-19T00:00:00
db:JVNDBid:JVNDB-2018-015643date:2019-06-21T00:00:00
db:CNNVDid:CNNVD-201903-632date:2019-03-19T00:00:00
db:NVDid:CVE-2018-18880date:2019-06-18T14:15:11.307