CVE-2017-7928 - OpenCVE

An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Selinc	Sel-3622 Sel-3622 Firmware Sel-3620 Firmware Sel-3620

Configuration 1 [-]

AND

OR	cpe:2.3:o:selinc:sel-3620_firmware:r202:::::::*
	cpe:2.3:o:selinc:sel-3620_firmware:r203:::::::*
	cpe:2.3:o:selinc:sel-3620_firmware:r203-v:::::::*
	cpe:2.3:o:selinc:sel-3620_firmware:r203-v1:::::::*
	cpe:2.3:o:selinc:sel-3620_firmware:r204:::::::*
	cpe:2.3:o:selinc:sel-3620_firmware:r204-v1:::::::*

cpe:2.3:h:selinc:sel-3620:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:selinc:sel-3622_firmware:r202:::::::*
	cpe:2.3:o:selinc:sel-3622_firmware:r203:::::::*
	cpe:2.3:o:selinc:sel-3622_firmware:r203-v:::::::*
	cpe:2.3:o:selinc:sel-3622_firmware:r203-v1:::::::*
	cpe:2.3:o:selinc:sel-3622_firmware:r204:::::::*
	cpe:2.3:o:selinc:sel-3622_firmware:r204-v1:::::::*

cpe:2.3:h:selinc:sel-3622:-:*:*:*:*:*:*:*

References

Link	Resource
http://www.securityfocus.com/bid/99536	Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06	Mitigation Third Party Advisory US Government Resource

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: icscert

Published: 2017-08-07T08:00:00

Updated: 2017-08-07T09:57:02

Reserved: 2017-04-18T00:00:00

Link: CVE-2017-7928

JSON object: View

NVD Information

Status : Modified

Published: 2017-08-07T08:29:00.290

Modified: 2019-10-09T23:29:59.627

Link: CVE-2017-7928

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622", "vendor": "n/a", "versions": [{"status": "affected", "version": "Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622"}]}], "datePublic": "2017-08-07T00:00:00", "descriptions": [{"lang": "en", "value": "An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "description": "CWE-284", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T09:57:02", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06"}, {"name": "99536", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/99536"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2017-7928", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622", "version": {"version_data": [{"version_value": "Schweitzer Engineering Laboratories, Inc. SEL-3620 and SEL-3622"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-284"}]}]}, "references": {"reference_data": [{"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06"}, {"name": "99536", "refsource": "BID", "url": "http://www.securityfocus.com/bid/99536"}]}}}}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2017-7928", "datePublished": "2017-08-07T08:00:00", "dateReserved": "2017-04-18T00:00:00", "dateUpdated": "2017-08-07T09:57:02", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r202:*:*:*:*:*:*:*", "matchCriteriaId": "6583BFAD-2575-4E44-8627-93F398CC5FBC", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r203:*:*:*:*:*:*:*", "matchCriteriaId": "402F8A8A-1F2C-4604-B18C-AB2A25003A63", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r203-v:*:*:*:*:*:*:*", "matchCriteriaId": "45E61C60-30D0-45C9-BFC5-6FA526AAD466", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r203-v1:*:*:*:*:*:*:*", "matchCriteriaId": "90060D74-8688-477B-842A-47A02F8B28D3", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r204:*:*:*:*:*:*:*", "matchCriteriaId": "38283FF1-5422-4D73-84CC-7EC57286A8FF", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3620_firmware:r204-v1:*:*:*:*:*:*:*", "matchCriteriaId": "FD1BD563-98E4-4A2D-9489-5EA7959546EB", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3620:-:*:*:*:*:*:*:*", "matchCriteriaId": "5DDB548A-15DE-4512-9C02-6197E08051DE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r202:*:*:*:*:*:*:*", "matchCriteriaId": "F65F7FC5-C8EF-4884-B5F5-66DBE6751121", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r203:*:*:*:*:*:*:*", "matchCriteriaId": "46A6C684-A415-4A00-AB85-13A127A13D65", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r203-v:*:*:*:*:*:*:*", "matchCriteriaId": "2C7DCDDC-AE50-4322-BCEE-BF636ECA84B8", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r203-v1:*:*:*:*:*:*:*", "matchCriteriaId": "B20DCC56-E2F2-4414-89D3-821F7E230B2E", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r204:*:*:*:*:*:*:*", "matchCriteriaId": "88CA202B-F6D0-4727-BFC0-DBA9A871B582", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-3622_firmware:r204-v1:*:*:*:*:*:*:*", "matchCriteriaId": "3F2DFB60-2951-4AAA-9094-CA7F90EC82DE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3622:-:*:*:*:*:*:*:*", "matchCriteriaId": "F2A5E4D1-3584-4B2A-9598-601AAD7FF977", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, which may allow for unauthorized communications to downstream devices."}, {"lang": "es", "value": "Se ha descubierto un problema de control de acceso incorrecto en Schweitzer Engineering Laboratories (SEL) SEL-3620 y SEL-3622 Security Gateway Versiones R202 y, R203, R203-V1, R203-V2 y, R204, R204-V1. El dispositivo no aplica correctamente controles de acceso al estar configurado para el reenv\u00edo de puertos NAT, lo que podr\u00eda permitir que se realizasen comunicaciones no autorizadas a dispositivos de bajada."}], "id": "CVE-2017-7928", "lastModified": "2019-10-09T23:29:59.627", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 10.0, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 6.0, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-08-07T08:29:00.290", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/99536"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Mitigation", "Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-192-06"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-284"}], "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}