CVE-2023-34388 - OpenCVE

An Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication. See product Instruction Manual Appendix A dated 20230830 for more details.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Selinc	Sel-451 Sel-451 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware::::::::
	cpe:2.3:o:selinc:sel-451_firmware:r326-v0:::::::*
	cpe:2.3:o:selinc:sel-451_firmware:r327-v0:::::::*

cpe:2.3:h:selinc:sel-451:-:*:*:*:*:*:*:*

References

Link	Resource
https://selinc.com/support/security-notifications/external-reports/	Vendor Advisory
https://www.nozominetworks.com/blog/	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: SEL

Published: 2023-11-30T16:54:08.503Z

Updated: 2023-11-30T16:54:08.503Z

Reserved: 2023-06-02T17:18:29.696Z

Link: CVE-2023-34388

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-11-30T17:15:09.133

Modified: 2023-12-06T00:33:56.413

Link: CVE-2023-34388

JSON object: View

Redhat Information

No data.

CWE

CWE-287

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-34388", "assignerOrgId": "5804bb70-792c-43e0-8596-486cc0efe699", "state": "PUBLISHED", "assignerShortName": "SEL", "dateReserved": "2023-06-02T17:18:29.696Z", "datePublished": "2023-11-30T16:54:08.503Z", "dateUpdated": "2023-11-30T16:54:08.503Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "SEL-451", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R315-V4", "status": "affected", "version": "R315-V0", "versionType": "custom"}, {"lessThan": "R316-V4", "status": "affected", "version": "R316-V0", "versionType": "custom"}, {"lessThan": "R317-V4", "status": "affected", "version": "R317-V0", "versionType": "custom"}, {"lessThan": "R318-V5", "status": "affected", "version": "R318-V0", "versionType": "custom"}, {"lessThan": "R320-V3", "status": "affected", "version": "R320-V0", "versionType": "custom"}, {"lessThan": "R321-V3", "status": "affected", "version": "R321-V0", "versionType": "custom"}, {"lessThan": "R322-V3", "status": "affected", "version": "R322-V0", "versionType": "custom"}, {"lessThan": "R323-V5", "status": "affected", "version": "R323-V0", "versionType": "custom"}, {"lessThan": "R324-V4", "status": "affected", "version": "R324-V0", "versionType": "custom"}, {"lessThan": "R325-V3", "status": "affected", "version": "R325-V0", "versionType": "custom"}, {"lessThan": "R326-V1", "status": "affected", "version": "R326-V0", "versionType": "custom"}, {"lessThan": "R327-V1", "status": "affected", "version": "R327-V0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Andrea Palanca and Gabriele Quagliarella of Nozomi Networks"}], "datePublic": "2023-11-30T09:56:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication.<br><br>\n\nSee product Instruction Manual Appendix A dated 20230830 for more details.\n\n<br>"}], "value": "An\u00a0Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication.\n\n\n\nSee product Instruction Manual Appendix A dated 20230830 for more details.\n\n\n"}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}, {"capecId": "CAPEC-593", "descriptions": [{"lang": "en", "value": "CAPEC-593 Session Hijacking"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-287", "description": "CWE-287 Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "5804bb70-792c-43e0-8596-486cc0efe699", "shortName": "SEL", "dateUpdated": "2023-11-30T16:54:08.503Z"}, "references": [{"url": "https://selinc.com/support/security-notifications/external-reports/"}, {"url": "https://www.nozominetworks.com/blog/"}], "source": {"discovery": "UNKNOWN"}, "title": "Improper authentication could lead to session hijacking", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "567CA071-8A2D-40DD-A3DF-0FD73739476F", "versionEndExcluding": "r315-v4", "versionStartIncluding": "r315-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EE50B5EC-2A69-4EA9-A16D-5A0BF38D2861", "versionEndExcluding": "r316-v4", "versionStartIncluding": "r316-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D9D6B6F3-8D35-46B5-879C-26F22ED4AA2D", "versionEndExcluding": "r317-v4", "versionStartIncluding": "r317-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5DC6FE46-8B20-47D6-8A88-1708978C49D1", "versionEndExcluding": "r318-v5", "versionStartIncluding": "r318-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9E3E5B0A-E01A-4A5B-894C-DF83E4E5B23F", "versionEndExcluding": "r320-v3", "versionStartIncluding": "r320-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7505AF51-82AF-4145-B794-CA0B5048DD7E", "versionEndExcluding": "r321-v3", "versionStartIncluding": "r321-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6F092F10-4440-4FC4-8B0B-44B86F1742B8", "versionEndExcluding": "r322-v3", "versionStartIncluding": "r322-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B80DF635-298D-45B6-A5F7-71386587E6A8", "versionEndExcluding": "r323-v5", "versionStartIncluding": "r323-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3E9473AE-F0E1-49A2-BD2E-CEAC21B5CF9C", "versionEndExcluding": "r324-v4", "versionStartIncluding": "r324-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77E42746-C95B-476B-8734-0DE9FA1C611C", "versionEndExcluding": "r325-v3", "versionStartIncluding": "r325-v0", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:r326-v0:*:*:*:*:*:*:*", "matchCriteriaId": "8EF1EF31-FFF7-4A3B-8A9F-2BD4CC355CD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:selinc:sel-451_firmware:r327-v0:*:*:*:*:*:*:*", "matchCriteriaId": "B9C7EDD0-52E2-45E7-975C-B194F2902F5D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-451:-:*:*:*:*:*:*:*", "matchCriteriaId": "9BBDB9B5-DAF0-4A78-88E3-1EB6486F8A13", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An\u00a0Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication.\n\n\n\nSee product Instruction Manual Appendix A dated 20230830 for more details.\n\n\n"}, {"lang": "es", "value": "Una vulnerabilidad de autenticaci\u00f3n incorrecta en Schweitzer Engineering Laboratories SEL-451 podr\u00eda permitir que un atacante remoto no autenticado realice potencialmente un ataque de secuestro de sesi\u00f3n y omita la autenticaci\u00f3n. Consulte el Ap\u00e9ndice A del Manual de instrucciones del producto con fecha 20230830 para obtener m\u00e1s detalles."}], "id": "CVE-2023-34388", "lastModified": "2023-12-06T00:33:56.413", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "security@selinc.com", "type": "Secondary"}]}, "published": "2023-11-30T17:15:09.133", "references": [{"source": "security@selinc.com", "tags": ["Vendor Advisory"], "url": "https://selinc.com/support/security-notifications/external-reports/"}, {"source": "security@selinc.com", "tags": ["Third Party Advisory"], "url": "https://www.nozominetworks.com/blog/"}], "sourceIdentifier": "security@selinc.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-287"}], "source": "security@selinc.com", "type": "Secondary"}]}