CVE-2018-8851

Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. The devices store passwords in plaintext, which may allow an attacker with access to the configuration file to log into the SmartServer web user interface.

CVSS v3 9.8 CRITICAL
CVSS v2.0 5.0 MEDIUM

9.8^/10

CVSS v3 : CRITICAL

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-200-03	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:echelon:smartserver_1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:echelon:smartserver_1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:echelon:smartserver_2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:echelon:smartserver_2:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:echelon:i.lon_100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:echelon:i.lon_100:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:echelon:i.lon_600_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:echelon:i.lon_600:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-07-24 17:29

Updated : 2024-02-04 20:03

NVD link : CVE-2018-8851

Mitre link : CVE-2018-8851

CVE.ORG link : CVE-2018-8851

JSON object : View

Products Affected

echelon

smartserver_2_firmware
smartserver_1
i.lon_100_firmware
smartserver_1_firmware
i.lon_100
i.lon_600
i.lon_600_firmware
smartserver_2

CWE

CWE-522

Insufficiently Protected Credentials

CWE-256

Unprotected Storage of Credentials

{"id": "CVE-2018-8851", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2018-07-24T17:29:00.353", "references": [{"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-200-03", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-522"}]}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-256"}]}], "descriptions": [{"lang": "en", "value": "Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. The devices store passwords in plaintext, which may allow an attacker with access to the configuration file to log into the SmartServer web user interface."}, {"lang": "es", "value": "Echelon SmartServer 1 en todas las versiones, SmartServer 2 en todas las versiones anteriores a 4.11.007, i.LON 100 en todas las versiones y i.LON 600 en todas las versiones. El dispositivo almacena contrase\u00f1as en texto plano, lo que podr\u00eda permitir que un atacante con acceso al archivo de configuraci\u00f3n inicie sesi\u00f3n en la interfaz web de usuario de SmartServer."}], "lastModified": "2019-10-09T23:42:57.160", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:echelon:smartserver_1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82A8FFC2-7191-42FE-8F71-77DE83945FFA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:echelon:smartserver_1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D78AEC2-D6E0-42EE-AEF4-5AEBA6B29611"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:echelon:smartserver_2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83547993-8A11-4A60-9CBE-3CD006272A1C", "versionEndExcluding": "4.11.007"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:echelon:smartserver_2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "418DEBAC-57D5-4BA8-806B-3DC235F1B625"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:echelon:i.lon_100_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DC38B32-715F-4ECA-AA60-15BE5EEB0DDE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:echelon:i.lon_100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D195E8CF-A5E2-4799-A0EF-189A825BB3AF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:echelon:i.lon_600_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1F3F845-E167-48A6-B159-39634D4D5DEB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:echelon:i.lon_600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "129D5CFF-EE75-4AED-89B1-DD947359DFFE"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}