Multiple vulnerabilities in Softing edgeConnector and edgeAggregator
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2023-38126 CVE-2024-0860 |
| CWE-ID | CWE-22 CWE-319 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
edgeConnector Other software / Other software solutions edgeAggregator Other software / Other software solutions |
| Vendor | Softing AG |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Path traversal
EUVDB-ID: #VU87540
Risk: Low
CVSSv3.1: 6.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-38126
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences wirhin the backup zip files. A remote administrator can send a specially crafted HTTP request and write to a file or overwrite a file in the filesystem.
MitigationInstall update from vendor's website.
Vulnerable software versionsedgeConnector: 3.60
edgeAggregator: 3.60
External linkshttp://www.zerodayinitiative.com/advisories/ZDI-23-1058/
http://www.cisa.gov/news-events/ics-advisories/icsa-24-074-13
http://www.zerodayinitiative.com/advisories/ZDI-24-352/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Cleartext transmission of sensitive information
EUVDB-ID: #VU87541
Risk: Medium
CVSSv3.1: 7 [CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-0860
CWE-ID:
CWE-319 - Cleartext Transmission of Sensitive Information
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromsie the target system.
The vulnerability exists due to software uses insecure communication channel to transmit sensitive information. A remote attacker with ability to intercept network traffic can gain access to sensitive data and craft their own requests.
MitigationInstall updates from vendor's website.
Vulnerable software versionsedgeConnector: 3.60
edgeAggregator: 3.60
External linkshttp://www.cisa.gov/news-events/ics-advisories/icsa-24-074-13
http://www.zerodayinitiative.com/advisories/ZDI-24-353/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
