CVE-2022-24387 - OpenCVE

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:S/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Smartertools	Smartertrack

Configuration 1 [-]

cpe:2.3:a:smartertools:smartertrack:*:*:*:*:*:*:*:*

References

Link	Resource
https://csirt.divd.nl/DIVD-2021-00029	Third Party Advisory VDB Entry
https://csrit.divd.nl/CVE-2022-24387	Broken Link

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: DIVD

Published: 2022-03-14T12:15:59

Updated: 2024-06-20T12:59:45.305Z

Reserved: 2022-02-03T00:00:00

Link: CVE-2022-24387

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-03-14T13:15:07.943

Modified: 2022-03-19T01:11:04.923

Link: CVE-2022-24387

JSON object: View

Redhat Information

No data.

CWE

CWE-434

{"containers": {"cna": {"affected": [{"product": "SmarterTrack", "vendor": "SmarterTools", "versions": [{"lessThan": "Build 8075", "status": "affected", "version": "100.0.8019.x", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Wietse Boonstra of DIVD"}], "descriptions": [{"lang": "en", "value": "With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b87402ff-ae37-4194-9dae-31abdbd6f217", "shortName": "DIVD", "dateUpdated": "2024-06-20T12:59:45.305Z"}, "references": [{"tags": ["x_refsource_CONFIRM", "related"], "url": "https://csirt.divd.nl/DIVD-2021-00029"}, {"tags": ["x_refsource_CONFIRM", "third-party-advisory"], "url": "https://csrit.divd.nl/CVE-2022-24387"}], "source": {"advisory": "DIVD-2021-00029", "discovery": "INTERNAL"}, "title": "File upload and overwrite to app_data/Config in SmarterTrack v100.0.8019.14010", "x_generator": {"engine": "Vulnogram 0.0.9"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-24387", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-05-23T15:40:24.373881Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:smartertools:smartertrack:*:*:*:*:*:*:*:*"], "vendor": "smartertools", "product": "smartertrack", "versions": [{"status": "affected", "version": "100.0.8019.x", "lessThan": "Build_8075 ", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:15:53.847Z"}}]}, "cveMetadata": {"assignerOrgId": "b87402ff-ae37-4194-9dae-31abdbd6f217", "assignerShortName": "DIVD", "cveId": "CVE-2022-24387", "datePublished": "2022-03-14T12:15:59", "dateReserved": "2022-02-03T00:00:00", "dateUpdated": "2024-06-20T12:59:45.305Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:smartertools:smartertrack:*:*:*:*:*:*:*:*", "matchCriteriaId": "9341A22E-DFC2-49E6-82B3-48C692AAFF7E", "versionEndExcluding": "100.0.8075", "versionStartIncluding": "100.0.8019", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010"}, {"lang": "es", "value": "Con privilegios de administrador o de administrador puede enga\u00f1arse a la aplicaci\u00f3n para que sobrescriba los archivos de la carpeta app_data/Config, por ejemplo, el archivo systemsettings.xml. Esto es posible en SmarterTrack versi\u00f3n v100.0.8019.14010"}], "id": "CVE-2022-24387", "lastModified": "2022-03-19T01:11:04.923", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 6.0, "source": "csirt@divd.nl", "type": "Secondary"}]}, "published": "2022-03-14T13:15:07.943", "references": [{"source": "csirt@divd.nl", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://csirt.divd.nl/DIVD-2021-00029"}, {"source": "csirt@divd.nl", "tags": ["Broken Link"], "url": "https://csrit.divd.nl/CVE-2022-24387"}], "sourceIdentifier": "csirt@divd.nl", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-434"}], "source": "csirt@divd.nl", "type": "Secondary"}]}