CVE-2022-30275 - OpenCVE

The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration file. In addition, this password is used for access control to MOSCAD/STS projects protected with the Legacy Password feature. In this case, an insecure CRC of the password is present in the project file: this CRC is validated against the password in the driver configuration file.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Motorolasolutions	Mdlc

Configuration 1 [-]

OR	cpe:2.3:a:motorolasolutions:mdlc:4.80.0024:::::::*
	cpe:2.3:a:motorolasolutions:mdlc:4.82.004:::::::*
	cpe:2.3:a:motorolasolutions:mdlc:4.83.001:::::::*

References

Link	Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-05	Mitigation Third Party Advisory US Government Resource
https://www.forescout.com/blog/	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-07-26T21:21:46

Updated: 2022-07-26T21:21:46

Reserved: 2022-05-04T00:00:00

Link: CVE-2022-30275

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-07-26T22:15:11.273

Modified: 2024-02-14T15:32:19.563

Link: CVE-2022-30275

JSON object: View

Redhat Information

No data.

CWE

CWE-312

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration file. In addition, this password is used for access control to MOSCAD/STS projects protected with the Legacy Password feature. In this case, an insecure CRC of the password is present in the project file: this CRC is validated against the password in the driver configuration file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-26T21:21:46", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.forescout.com/blog/"}, {"tags": ["x_refsource_MISC"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-05"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-30275", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration file. In addition, this password is used for access control to MOSCAD/STS projects protected with the Legacy Password feature. In this case, an insecure CRC of the password is present in the project file: this CRC is validated against the password in the driver configuration file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.forescout.com/blog/", "refsource": "MISC", "url": "https://www.forescout.com/blog/"}, {"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-05", "refsource": "MISC", "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-05"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-30275", "datePublished": "2022-07-26T21:21:46", "dateReserved": "2022-05-04T00:00:00", "dateUpdated": "2022-07-26T21:21:46", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:motorolasolutions:mdlc:4.80.0024:*:*:*:*:*:*:*", "matchCriteriaId": "83AC1904-7229-4B7E-919B-9617D9AB2A02", "vulnerable": true}, {"criteria": "cpe:2.3:a:motorolasolutions:mdlc:4.82.004:*:*:*:*:*:*:*", "matchCriteriaId": "824D6C18-5549-4FF0-BAB9-5FD2B457D03C", "vulnerable": true}, {"criteria": "cpe:2.3:a:motorolasolutions:mdlc:4.83.001:*:*:*:*:*:*:*", "matchCriteriaId": "C158107A-2731-47CE-8BA6-A10DD51F1DEE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration file. In addition, this password is used for access control to MOSCAD/STS projects protected with the Legacy Password feature. In this case, an insecure CRC of the password is present in the project file: this CRC is validated against the password in the driver configuration file."}, {"lang": "es", "value": "El software MOSCAD Toolbox de Motorola versiones hasta 02-05-2022, es basado en una contrase\u00f1a en texto sin cifrar. Usa un controlador MDLC para comunicarse con las RTU de MOSCAD/ACE con fines de ingenier\u00eda. El acceso a estas comunicaciones est\u00e1 protegido por una contrase\u00f1a almacenada en texto sin cifrar en el archivo de configuraci\u00f3n del driver wmdlcdrv.ini. Adem\u00e1s, esta contrase\u00f1a es usado para el control de acceso a los proyectos de MOSCAD/STS protegidos con la funci\u00f3n Legacy Password. En este caso, un CRC no seguro de la contrase\u00f1a est\u00e1 presente en el archivo del proyecto: este CRC es comprobado contra la contrase\u00f1a en el archivo de configuraci\u00f3n del controlador."}], "id": "CVE-2022-30275", "lastModified": "2024-02-14T15:32:19.563", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-26T22:15:11.273", "references": [{"source": "cve@mitre.org", "tags": ["Mitigation", "Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-05"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.forescout.com/blog/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-312"}], "source": "nvd@nist.gov", "type": "Primary"}]}