CVE-2020-10633

A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions prior to 14.1s0). An attacker could send a specially crafted URL to initiate a password change for the device. The target must introduce the credentials to the gateway before the attack can be successful.

CVSS v3 6.1 MEDIUM
CVSS v2.0 4.3 MEDIUM

6.1^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://www.us-cert.gov/ics/advisories/icsa-20-098-03	Third Party Advisory US Government Resource
https://www.us-cert.gov/ics/advisories/icsa-20-098-03	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:hms-networks:ewon_flexy_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hms-networks:ewon_flexy:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:hms-networks:ewon_cosy_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hms-networks:ewon_cosy:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:55

Type	Values Removed	Values Added
References	~~() https://www.us-cert.gov/ics/advisories/icsa-20-098-03 - Third Party Advisory, US Government Resource~~	() https://www.us-cert.gov/ics/advisories/icsa-20-098-03 - Third Party Advisory, US Government Resource

Information

Published : 2020-04-08 01:15

Updated : 2024-11-21 04:55

NVD link : CVE-2020-10633

Mitre link : CVE-2020-10633

CVE.ORG link : CVE-2020-10633

JSON object : View

Products Affected

hms-networks

ewon_flexy
ewon_cosy_firmware
ewon_cosy
ewon_flexy_firmware

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2020-10633", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2020-04-08T01:15:11.953", "references": [{"url": "https://www.us-cert.gov/ics/advisories/icsa-20-098-03", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}, {"url": "https://www.us-cert.gov/ics/advisories/icsa-20-098-03", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-79"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions prior to 14.1s0). An attacker could send a specially crafted URL to initiate a password change for the device. The target must introduce the credentials to the gateway before the attack can be successful."}, {"lang": "es", "value": "Se presenta una vulnerabilidad de tipo XSS (cross-site scripting) no persistente en eWON Flexy y Cozy (todas las versiones de firmware anteriores a 14.1s0). Un atacante podr\u00eda enviar una URL especialmente dise\u00f1ada para iniciar un cambio de contrase\u00f1a para el dispositivo. El objetivo debe introducir las credenciales en la puerta de enlace antes de que el ataque pueda tener \u00e9xito."}], "lastModified": "2024-11-21T04:55:44.407", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hms-networks:ewon_flexy_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88BD00FA-3A80-43B5-B355-52D6DF51D4A7", "versionEndExcluding": "14.1s0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hms-networks:ewon_flexy:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58057056-ED41-4C3F-9ABC-DB595741C9A0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hms-networks:ewon_cosy_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "597AE513-66CE-4544-AA5E-4B9D99E3F1B8", "versionEndExcluding": "14.1s0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hms-networks:ewon_cosy:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "999DB8E0-FE32-4561-A8E8-E95B8574419B"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}