CVE-2022-30245 - OpenCVE

Vendors	Products
Honeywell	Alerton Compass

Link	Resource
https://blog.scadafence.com	Third Party Advisory
https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities	Third Party Advisory
https://www.honeywell.com/us/en/product-security	Vendor Advisory

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-15T11:40:28", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://blog.scadafence.com"}, {"tags": ["x_refsource_MISC"], "url": "https://www.honeywell.com/us/en/product-security"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-30245", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://blog.scadafence.com", "refsource": "MISC", "url": "https://blog.scadafence.com"}, {"name": "https://www.honeywell.com/us/en/product-security", "refsource": "MISC", "url": "https://www.honeywell.com/us/en/product-security"}, {"name": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities", "refsource": "MISC", "url": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-30245", "datePublished": "2022-07-15T11:40:28", "dateReserved": "2022-05-04T00:00:00", "dateUpdated": "2022-07-15T11:40:28", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:honeywell:alerton_compass:1.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "B77C89F5-1BB4-43D4-926A-D447ACD8A6A8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered."}, {"lang": "es", "value": "El software Honeywell Alerton Compass versi\u00f3n 1.6.5, permite realizar cambios de configuraci\u00f3n no autenticados desde usuarios remotos. Esto permite que los datos de configuraci\u00f3n sean almacenados en el controlador y luego sean implementados. Un usuario con intenciones maliciosas puede enviar un paquete dise\u00f1ado para cambiar la configuraci\u00f3n del controlador sin el conocimiento de otros usuarios, alterando las capacidades de funcionamiento del controlador. La configuraci\u00f3n modificada no es actualizada en la interfaz de usuario, lo que crea una incoherencia entre la visualizaci\u00f3n de la configuraci\u00f3n y la configuraci\u00f3n real en el controlador. Tras el cambio de configuraci\u00f3n, la reparaci\u00f3n requiere volver a la configuraci\u00f3n correcta, lo que requiere un acceso f\u00edsico o remoto dependiendo de la configuraci\u00f3n que haya sido alterado"}], "id": "CVE-2022-30245", "lastModified": "2022-07-25T17:50:26.467", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-15T12:15:08.860", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://blog.scadafence.com"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/scadafence/Honeywell-Alerton-Vulnerabilities"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.honeywell.com/us/en/product-security"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-610"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction Required

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction Required

JSON object

JSON object

JSON object