CVE-2022-1661 - OpenCVE

The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Keysight	N6841a Rf Firmware N6854a N6854a Firmware N6841a Rf

Configuration 1 [-]

AND

cpe:2.3:o:keysight:n6854a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:keysight:n6854a:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:keysight:n6841a_rf_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:keysight:n6841a_rf:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-146-01	Third Party Advisory US Government Resource

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: icscert

Published: 2022-05-26T00:00:00

Updated: 2022-05-31T19:36:01

Reserved: 2022-05-10T00:00:00

Link: CVE-2022-1661

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-06-02T14:15:33.070

Modified: 2023-06-27T16:13:26.807

Link: CVE-2022-1661

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "N6854A Geolocation server and N6841A RF Sensor software", "vendor": "Keysight", "versions": [{"lessThan": "2.3.0", "status": "affected", "version": "all", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "rgod, working with Trend Micro\u2019s Zero Day Initiative, reported these vulnerabilities to CISA."}], "datePublic": "2022-05-26T00:00:00", "descriptions": [{"lang": "en", "value": "The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-23", "description": "CWE-23 Relative Path Traversal", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-05-31T19:36:01", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-146-01"}], "solutions": [{"lang": "en", "value": "Keysight recommends users update N6854A and N6841A RF to v2.4.0 or later.\n\nKeysight also recommends users take the following actions to help reduce risk:\nBlock incoming connection on TCP port number defined by environment variable KEYSIGHT_SMS_PORT (default: 8080)"}], "source": {"advisory": "ICSA-22-146-01", "discovery": "EXTERNAL"}, "title": "Keysight N6854A Geolocation server and N6841A RF Sensor software", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "DATE_PUBLIC": "2022-05-26T17:11:00.000Z", "ID": "CVE-2022-1661", "STATE": "PUBLIC", "TITLE": "Keysight N6854A Geolocation server and N6841A RF Sensor software"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "N6854A Geolocation server and N6841A RF Sensor software", "version": {"version_data": [{"version_affected": "<", "version_name": "all", "version_value": "2.3.0"}]}}]}, "vendor_name": "Keysight"}]}}, "credit": [{"lang": "eng", "value": "rgod, working with Trend Micro\u2019s Zero Day Initiative, reported these vulnerabilities to CISA."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-23 Relative Path Traversal"}]}]}, "references": {"reference_data": [{"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-146-01", "refsource": "MISC", "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-146-01"}]}, "solution": [{"lang": "en", "value": "Keysight recommends users update N6854A and N6841A RF to v2.4.0 or later.\n\nKeysight also recommends users take the following actions to help reduce risk:\nBlock incoming connection on TCP port number defined by environment variable KEYSIGHT_SMS_PORT (default: 8080)"}], "source": {"advisory": "ICSA-22-146-01", "discovery": "EXTERNAL"}}}}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2022-1661", "datePublished": "2022-05-26T00:00:00", "dateReserved": "2022-05-10T00:00:00", "dateUpdated": "2022-05-31T19:36:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:keysight:n6854a_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C1C6419D-2EBD-41B5-A9CD-5DBAFCD1202F", "versionEndExcluding": "2.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:keysight:n6854a:-:*:*:*:*:*:*:*", "matchCriteriaId": "685A10D5-092D-48D5-92F8-5D960A825E93", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:keysight:n6841a_rf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F958F484-C2AB-4639-BED0-CE81868AF206", "versionEndExcluding": "2.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:keysight:n6841a_rf:-:*:*:*:*:*:*:*", "matchCriteriaId": "6531195C-33FD-4064-95A0-5660BB5562EB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files."}, {"lang": "es", "value": "Los productos afectados son vulnerables a un salto de directorio, lo que puede permitir a un atacante obtener archivos arbitrarios del sistema operativo"}], "id": "CVE-2022-1661", "lastModified": "2023-06-27T16:13:26.807", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}, "published": "2022-06-02T14:15:33.070", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-146-01"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-23"}], "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}