CVE-2022-32965

OMICARD EDM has a hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to the server to execute arbitrary code, manipulate system data and disrupt service.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f	Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html	Third Party Advisory
https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f	Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:omicard_edm_project:omicard_edm:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:07

Type	Values Removed	Values Added
References	~~() https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f - Third Party Advisory~~	() https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f - Third Party Advisory
References	~~() https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html - Third Party Advisory~~	() https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html - Third Party Advisory

Information

Published : 2022-08-04 10:15

Updated : 2024-11-21 07:07

NVD link : CVE-2022-32965

Mitre link : CVE-2022-32965

CVE.ORG link : CVE-2022-32965

JSON object : View

Products Affected

omicard_edm_project

omicard_edm

CWE

CWE-798

Use of Hard-coded Credentials

{"id": "CVE-2022-32965", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "twcert@cert.org.tw", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2022-08-04T10:15:08.250", "references": [{"url": "https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f", "tags": ["Third Party Advisory"], "source": "twcert@cert.org.tw"}, {"url": "https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html", "tags": ["Third Party Advisory"], "source": "twcert@cert.org.tw"}, {"url": "https://www.chtsecurity.com/news/48032532-b2de-401c-97a8-a2be5691988f", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.twcert.org.tw/tw/cp-132-6373-34d51-1.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "twcert@cert.org.tw", "description": [{"lang": "en", "value": "CWE-798"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "OMICARD EDM has a hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to the server to execute arbitrary code, manipulate system data and disrupt service."}, {"lang": "es", "value": "OMICARD EDM presenta una clave de m\u00e1quina embebida. Un atacante remoto no autenticado puede usar la clave de m\u00e1quina para enviar carga \u00fatil serializada al servidor para ejecutar c\u00f3digo arbitrario, manipular datos del sistema e interrumpir el servicio"}], "lastModified": "2024-11-21T07:07:19.633", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:omicard_edm_project:omicard_edm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F11B29BF-543C-4268-B257-E02275F6B969", "versionEndIncluding": "6.0", "versionStartIncluding": "5.8"}], "operator": "OR"}]}], "sourceIdentifier": "twcert@cert.org.tw"}