CVE-2023-38422

Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-229-04	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:walchem:intuition_9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:walchem:intuition_9:-:*:*:*:*:*:*:*

History

05 Sep 2023, 19:41

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
First Time		Walchem intuition 9 Walchem Walchem intuition 9 Firmware
References	~~(MISC) https://www.cisa.gov/news-events/ics-advisories/icsa-23-229-04 -~~	(MISC) https://www.cisa.gov/news-events/ics-advisories/icsa-23-229-04 - Third Party Advisory, US Government Resource
CPE		cpe:2.3:o:walchem:intuition_9_firmware:::::::: cpe:2.3:h:walchem:intuition_9:-:::::::*

23 Aug 2023, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-08-23 22:15

Updated : 2024-02-28 20:33

NVD link : CVE-2023-38422

Mitre link : CVE-2023-38422

CVE.ORG link : CVE-2023-38422

JSON object : View

Products Affected

walchem

intuition_9
intuition_9_firmware

CWE

CWE-306

Missing Authentication for Critical Function

{"id": "CVE-2023-38422", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2023-08-23T22:15:08.693", "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-229-04", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data.\n"}, {"lang": "es", "value": "La versiones de firmware de Walchem Intuition 9 anteriores a la v4.21 carecen de autenticaci\u00f3n para algunas de las rutas API del servidor web de gesti\u00f3n. Esto podr\u00eda permitir a un atacante descargar y exportar datos sensibles. "}], "lastModified": "2023-09-05T19:41:08.010", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:walchem:intuition_9_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4646AA8D-0D63-4026-AB76-29D13BFEAE8B", "versionEndExcluding": "4.21"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:walchem:intuition_9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3E7C1440-FDB8-49F9-B2A1-981AEE899035"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}