CVE-2021-35956 - OpenCVE

Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:S/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Akcp	Sensorprobe4 Firmware Sensorprobe4 Sensorprobe8 Sensorprobe2 Sensorprobe8-x20 Sensorprobe8-x60 Firmware Sensorprobe8 Firmware Sensorprobe2 Firmware Sensorprobe8-x20 Firmware Sensorprobe8-x60

Configuration 1 [-]

AND

cpe:2.3:o:akcp:sensorprobe2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:akcp:sensorprobe2:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:akcp:sensorprobe4_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:akcp:sensorprobe4:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:akcp:sensorprobe8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:akcp:sensorprobe8:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:akcp:sensorprobe8-x20_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:akcp:sensorprobe8-x20:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:akcp:sensorprobe8-x60_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:akcp:sensorprobe8-x60:-:*:*:*:*:*:*:*

References

Link	Resource
http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html	Exploit Third Party Advisory
http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip	Product Vendor Advisory
https://tbutler.org/2021/06/28/cve-2021-35956	Exploit Third Party Advisory
https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/	Permissions Required Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2021-06-30T11:46:22

Updated: 2021-07-02T17:06:14

Reserved: 2021-06-29T00:00:00

Link: CVE-2021-35956

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-06-30T12:15:07.683

Modified: 2021-07-06T13:20:33.377

Link: CVE-2021-35956

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-07-02T17:06:14", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/"}, {"tags": ["x_refsource_MISC"], "url": "http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip"}, {"tags": ["x_refsource_MISC"], "url": "https://tbutler.org/2021/06/28/cve-2021-35956"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-35956", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/", "refsource": "MISC", "url": "https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/"}, {"name": "http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip", "refsource": "MISC", "url": "http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip"}, {"name": "https://tbutler.org/2021/06/28/cve-2021-35956", "refsource": "MISC", "url": "https://tbutler.org/2021/06/28/cve-2021-35956"}, {"name": "http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-35956", "datePublished": "2021-06-30T11:46:22", "dateReserved": "2021-06-29T00:00:00", "dateUpdated": "2021-07-02T17:06:14", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:akcp:sensorprobe2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A41C9021-A094-4639-A8D5-9CE6309E96B1", "versionEndExcluding": "sp480-20210624", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:akcp:sensorprobe2:-:*:*:*:*:*:*:*", "matchCriteriaId": "03ACF026-AAB8-4A42-96F2-E6CFF18D8A71", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:akcp:sensorprobe4_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4C90F180-9D07-4E86-ABA6-6F5593E02964", "versionEndExcluding": "sp480-20210624", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:akcp:sensorprobe4:-:*:*:*:*:*:*:*", "matchCriteriaId": "45781278-888A-4E62-9C68-2884BD8A36ED", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:akcp:sensorprobe8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DD8A4E60-EBDB-469C-B2C8-CD283A1ABAD4", "versionEndExcluding": "sp480-20210624", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:akcp:sensorprobe8:-:*:*:*:*:*:*:*", "matchCriteriaId": "A6F705EF-A132-4384-B4CD-DEF27AA63070", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:akcp:sensorprobe8-x20_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "50E86EFB-D9A2-4F02-82BB-BDF839299E6A", "versionEndExcluding": "sp480-20210624", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:akcp:sensorprobe8-x20:-:*:*:*:*:*:*:*", "matchCriteriaId": "2CA5BFB7-9576-4E3D-85C3-2DD6306EC110", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:akcp:sensorprobe8-x60_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D27B059-117B-4AD5-BE68-BD47A99C753A", "versionEndExcluding": "sp480-20210624", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:akcp:sensorprobe8-x60:-:*:*:*:*:*:*:*", "matchCriteriaId": "71D704E1-100E-4097-AED6-AC3C1FF1918F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields."}, {"lang": "es", "value": "Una vulnerabilidad de tipo cross-site scripting (XSS) almacenado en el servidor web insertado de AKCP sensorProbe versiones anteriores a SP480-20210624 permite a atacantes remotos autenticados introducir JavaScript arbitrario por medio de la Descripci\u00f3n del Sensor, Correo Electr\u00f3nico (de /a/c), Nombre del Sistema, y la Ubicaci\u00f3n de archivos del Sistema"}], "id": "CVE-2021-35956", "lastModified": "2021-07-06T13:20:33.377", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-06-30T12:15:07.683", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html"}, {"source": "cve@mitre.org", "tags": ["Product", "Vendor Advisory"], "url": "http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://tbutler.org/2021/06/28/cve-2021-35956"}, {"source": "cve@mitre.org", "tags": ["Permissions Required", "Vendor Advisory"], "url": "https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}