CVE-2023-46344 - OpenCVE

A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Solar-log	2000 Pm\+ 2000 Pm\+ Firmware

Configuration 1 [-]

AND

cpe:2.3:o:solar-log:2000_pm\+_firmware:15.10.2019:*:*:*:*:*:*:*

cpe:2.3:h:solar-log:2000_pm\+:-:*:*:*:*:*:*:*

References

Link	Resource
http://solar-log.com	Product
https://github.com/vinnie1717/CVE-2023-46344/blob/main/Solar-Log%20XSS	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2024-02-02T00:00:00

Updated: 2024-02-02T01:41:18.671633

Reserved: 2023-10-23T00:00:00

Link: CVE-2023-46344

JSON object: View

NVD Information

Status : Analyzed

Published: 2024-02-02T02:15:16.537

Modified: 2024-02-09T19:43:40.177

Link: CVE-2023-46344

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:solar-log:2000_pm\\+_firmware:15.10.2019:*:*:*:*:*:*:*", "matchCriteriaId": "3CFA48BC-724C-49F9-8FD6-5BBECD34C585", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:solar-log:2000_pm\\+:-:*:*:*:*:*:*:*", "matchCriteriaId": "A8E94086-68EC-4BAF-AB40-F2F4E679F761", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks."}, {"lang": "es", "value": "Una vulnerabilidad en Solar-Log Base 15 Firmware 6.0.1 Build 161, y posiblemente en otros productos Solar-Log Base, permite a un atacante escalar sus privilegios explotando una vulnerabilidad de cross-site scripting (XSS) almacenada en la funci\u00f3n de grupo de conmutadores en / #ilang=DE&b=c_smartenergy_swgroups en el portal web. La vulnerabilidad se puede aprovechar para obtener los derechos de un instalador o PM, que luego se puede utilizar para obtener acceso administrativo al portal web y ejecutar m\u00e1s ataques."}], "id": "CVE-2023-46344", "lastModified": "2024-02-09T19:43:40.177", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-02-02T02:15:16.537", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "http://solar-log.com"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/vinnie1717/CVE-2023-46344/blob/main/Solar-Log%20XSS"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}