Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.6.4.

Expand Up

@@ -97,10 +97,10 @@ pimcore.document.editables.link = Class.create(pimcore.document.editable, {

} else if (this.data.path) {

text \= this.data.path;

}

let displayHtml \= Ext.util.Format.htmlEncode(text);

if (this.data.path || this.data.anchor || this.data.parameters) {

let fullpath \= this.data.path + (this.data.parameters ? '?' + Ext.util.Format.htmlEncode(this.data.parameters) : '') + (this.data.anchor ? '#' + Ext.util.Format.htmlEncode(this.data.anchor) : '');

let displayHtml \= Ext.util.Format.htmlEncode(text);

  

  

if (this.config.textPrefix !== undefined) {

displayHtml \= this.config.textPrefix + displayHtml;

}

Expand All

@@ -110,7 +110,7 @@ pimcore.document.editables.link = Class.create(pimcore.document.editable, {

  

return '<a href="' + fullpath + '" class="' + this.config\["class"\] + ' ' + Ext.util.Format.htmlEncode(this.data\["class"\]) + '">' + displayHtml + '</a>';

}

return text;

return displayHtml;

},

  

save: function () {

Expand Down

CVE-2023-3822: Fix Xss in the link Editable · pimcore/pimcore@d75888a

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.6.4.

CVE-2023-3821

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4.

**Commit**

Permalink

Browse files

Browse the repository at this point in the history

Confidential information provided to user with no permissions (#15530)

\* Fix: check user permissions

\* some optimizations

\* Restrict access to /admin/index/statics

\* remove unused

---------

Co-authored-by: dvesh3 <divesh.pahuja@pimcore.com>

*   Loading branch information

Showing **4 changed files** with **12 additions** and **1 deletion**.

*   *   *   *   ClassController.php
        *   IndexController.php
        *   SettingsController.php
    *   *   startup.js

3 changes: 3 additions & 0 deletions bundles/AdminBundle/Controller/Admin/DataObject/ClassController.php

Expand Up

@@ -91,6 +91,9 @@ public function getAssetTypesAction(Request $request)

\*/

public function getTreeAction(Request $request)

{

// we need to check objects permission for listing in pimcore.model.objecttypes ext model

$this\->checkPermission('objects');

  

$defaultIcon = '/bundles/pimcoreadmin/img/flat-color-icons/class.svg';

  

$classesList = new DataObject\\ClassDefinition\\Listing();

Expand Down

4 changes: 4 additions & 0 deletions bundles/AdminBundle/Controller/Admin/IndexController.php

Expand Up

@@ -138,6 +138,10 @@ public function indexAction(

\*/

public function statisticsAction(Request $request, Connection $db, KernelInterface $kernel)

{

if (!$request\->isXmlHttpRequest()) {

throw $this\->createAccessDeniedHttpException();

}

  

// DB

try {

$tables = $db\->fetchAllAssociative('SELECT TABLE\_NAME as name,TABLE\_ROWS as \`rows\` from information\_schema.TABLES

Expand Down

3 changes: 3 additions & 0 deletions bundles/AdminBundle/Controller/Admin/SettingsController.php

Expand Up

@@ -1069,6 +1069,9 @@ public function glossaryAction(Request $request)

\*/

public function getAvailableSitesAction(Request $request)

{

// we need to check documents permission for listing purposes in sites ext model & url-slugs

$this\->checkPermission('documents');

  

$excludeMainSite = $request\->get('excludeMainSite');

  

$sitesList = new Model\\Site\\Listing();

Expand Down

3 changes: 2 additions & 1 deletion bundles/AdminBundle/Resources/public/js/pimcore/startup.js

Expand Up

@@ -571,8 +571,9 @@ Ext.onReady(function () {

}

  

if (data.pushStatistics) {

var request \= new XMLHttpRequest();

const request \= new XMLHttpRequest();

request.open('GET', Routing.generate('pimcore\_admin\_index\_statistics'));

request.setRequestHeader('X-Requested-With', 'XMLHttpRequest');

  

request.onload \= function () {

if (this.status \>= 200 && this.status < 400) {

Expand Down

**0 comments on commit 0237527**

Please sign in to comment.

CVE-2023-3819: Confidential information provided to user with no permissions (#15530) · pimcore/pimcore@0237527

 SQL Injection in GitHub repository pimcore/pimcore prior to 10.6.4.

Expand Up @@ -571,15 +571,16 @@ public function prepareListingForGrid(array $requestParams, string $requestedLan if (strpos($orderKey, '?') !== false) { $brickDescriptor = substr($orderKeyParts\[0\], 1); $brickDescriptor = json\_decode($brickDescriptor, true); $db = Db::get(); $orderKey = $db\->quoteIdentifier($brickDescriptor\['containerKey'\] . '\_localized') . '.' . $db\->quoteIdentifier($brickDescriptor\['brickfield'\]); $orderKey = $list\->quoteIdentifier($brickDescriptor\['containerKey'\] . '\_localized') . '.' . $list\->quoteIdentifier($brickDescriptor\['brickfield'\]); $doNotQuote = true; } elseif (count($orderKeyParts) === 2) { $orderKey = $orderKeyParts\[0\].'.'.$orderKeyParts\[1\]; $orderKey = $list\->quoteIdentifier($orderKeyParts\[0\]) . '.' . $list\->quoteIdentifier($orderKeyParts\[1\]); $doNotQuote = true; } } else { $orderKey = $list\->getDao()->getTableName().'.'.$orderKey; $orderKey = $list\->getDao()->getTableName() . '.' . $list\->quoteIdentifier($orderKey); $doNotQuote = true; } } Expand Down

CVE-2023-3820: [Bug]: Quote sorting key (#15523) · pimcore/pimcore@e641968

An issue has been discovered in GitLab EE affecting all versions starting from 12.8 before 15.11.11, all versions starting from 16.0 before 16.0.7, all versions starting from 16.1 before 16.1.2. An attacker could change the name or path of a public top-level group in certain situations.

CVE-2023-3484


It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by lacking validation for a specific value when calling cm_processChangedConfigMsg in ccm_processREQ_CHANGED_CONFIG function in AiMesh system. An unauthenticated remote attacker can exploit this vulnerability without privilege to perform remote arbitrary code execution, arbitrary system operation or disrupt service.
This issue affects RT-AX56U V2: 3.0.0.4.386_50460; RT-AC86U: 3.0.0.4_386_51529.

:::

*   勒索軟體防護專區
*   遠距辦公資安專區
*   回首頁
*   網站導覽
*   訂閱電子報
*   English

****

*   資安通報
*   Wannacry
*   駭客
*   勒索
*   手機

*   新聞公告News
    *   公告事項
    *   資安新聞
    *   資安活動
    *   電子報
*   資安服務Services
    *   資安通報
        *   一般資安通報
    *   資安聯盟
        *   資安聯盟簡介
        *   規章及會員申請暨異動申請
    *   台灣漏洞揭露平台 (TVN)
        *   TVN (Taiwan Vulnerability Note) 漏洞公告
        *   漏洞揭露政策
        *   漏洞通報
    *   惡意檔案檢測服務 (Virus Check)
    *   網路釣魚通報 (Phishing Check)
        *   網路釣魚通報
        *   釣魚網站列表
*   資安宣導Advocacy
    *   勒索軟體威脅防護專區
    *   遠距辦公資安專區
    *   企業資安事件應變處理指南
    *   威脅分析報告
    *   資安小知識
    *   資訊安全宣導
    *   資安宣導影音
    *   公開文件
*   相關網站Links
    *   國內資安組織
    *   國際資安組織
    *   網路資源
*   關於我們About us
    *   中心簡介
    *   活動紀事
        *   歷年年會活動網站
        *   活動花絮
    *   PGP KEY
    *   聯絡我們
    *   合作夥伴

:::

*   首頁
*   資安服務
*   台灣漏洞揭露平台 (TVN)
*   TVN (Taiwan Vulnerability Note) 漏洞公告

TVN ID

TVN-202307002

CVE ID

CVE-2023-35087

CVSS

9.8 (Critical)  
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

影響產品

RT-AX56U V2: 3.0.0.4.386\_50460 與 RT-AC86U: 3.0.0.4\_386\_51529

問題描述

ASUS RT-AX56U V2 與 RT-AC86U 存在Format String漏洞，cm\_processREQ\_CHANGED\_CONFIG未對輸入的格式化字串進行適當驗證，遠端攻擊者不須權限，即可利用此漏洞進行遠端程式碼執行，對設備進行任意操作或中斷服務。

解決方法

RT-AX56U V2: 更新至3.0.0.4\_386\_51598; RT-AC86U: 3.0.0.4.386\_51915

漏洞通報者

資安人員

公開日期

2023-07-17

CVE-2023-35087: ASUS RT-AX56U V2 & RT-AC86U - Format String - 2

A memory corruption vulnerability Panasonic Control FPWIN Pro versions 7.6.0.3 and all previous versions may allow arbitrary code execution when opening specially crafted project files.

   

With the innovative programming software Control FPWIN Pro, it takes minimal effort to achieve a maximum result with the PLCs.

**Programming software Control FPWIN Pro**

Control FPWIN Pro is the Panasonic programming software developed according to the international standard IEC 61131-3 (for Windows 10 and 11). Numerous libraries that incorporate a lot of our know-how ensure the reusability of ready-made functions and function blocks and save time for programming and debugging.

**Features**

1.  Structured Text (ST) programming editor
2.  Toolbar contains icons, which represents frequently used menus
3.  Delaration of variables
4.  Navigator provides an overview even for very complex projects
5.  Selection of Functions / Function blocks
6.  Ladder Diagram (LD) programming editor

**The most important FPWIN Pro highlights at a glance**

*   One software for all FP Series PLCs
*   5 programming languages (instruction list, ladder diagram, function block diagram, sequential function chart, structured text)
*   Well structured navigator provides effective overview of programming organizaton units (POUs), tasks, system registers, etc., simplifying project management
*   Reuse of ready made functions and function blocks saves time for programming and debugging
*   Programming, service, monitoring and diagnostics via RS232 (COM), Modem, Ethernet, USB
*   Forced ON/OFF of input and output contacts via the PC
*   Extensive comments - online documentation created hand in hand with the program
*   The name of variables, functions, function blocks and comments can be written in all languages thanks to Unicode
*   Improved programming comfort: snap function, automatic placement of newly inserted elements, existing connection retained while moving elements
*   Keyboard-control mode can accelerate programming
*   8 languages are supported: English, German, French, Italian, Spanish, Japanese, Korean, and Chinese
*   Real-time clock on the PLC can be set in the Software
*   All IEC functions support the FP7
*   New communication and pointer functions
*   New family of overloaded and type-safe instructions for 32-bit type PLCs (FP7) and 16-bit type PLCs
*   SD card instructions 

**Control FPWIN Pro ordering data**

Product

Order Number

License for Control FPWIN Pro V7. Programming software, full version for all FP series PLCs (including FP7)

FPWINPRO7\_LICENSE

**More information**

Video-tutorials

**Basic PLC video training**

Basic PLC course, giving an overview about programming with FPWIN Pro 7 software.

SErvice

**Control FPWIN Pro7**

Download software files and programming libraries for motion control and network protocols.

**Downloads**

Name

File Type

Size

Date

Language

PDF Brochure Automates programmables industriels

Catalog, Shortform

5.9 MB

09.04.2021

French

PDF Catálogo Resumen Autómatas Programables

Catalog, Shortform

13.3 MB

21.01.2022

Spanish

PDF Catálogo resumen - Gama de producto automatización industrial, 6215eues

Catalog, Shortform

5.9 MB

01.08.2021

Spanish

ZIP Control Configurator FM for integration in FPWIN Pro 7. Network Configurator including diagnostic functions for FP0H / FP2 / FP-Sigma Fieldbus Master Units(FMU).

Software

45.7 MB

09.09.2010

English

ZIP Control Configurator WD Version 1.77: setting software for Ethernet communication of FP7, FP0H, ELC500, Data Logger Light, PV200/500, HL-C21C, GT32T1/703/704, AFPX-COM5, FP-XH Ethernet type, LP-GS, K…

Software

7.3 MB

24.02.2021

English

PDF Control FPWIN Pro

Data sheet

835.3 KB

12.11.2018

German

PDF Control FPWIN Pro

Data sheet

833.7 KB

12.11.2018

English

PDF Control FPWIN Pro Befehlssatz

Manual

22.3 MB

01.12.2012

English

PDF Control FPWIN Pro Programming Manual

Manual

20.3 MB

01.07.2012

English

ZIP Control FPWIN Pro V 6.0 Reference Manual

Manual

5.5 MB

01.10.2008

English

ZIP Control FPWIN Pro V 6.0 Referenzhandbuch

Manual

5.9 MB

German

PDF Control FPWIN Pro, Programmation des automates : un logiciel pour toutes les applications

Data sheet

769.6 KB

French

ZIP Control FPWIN Pro7, free basic version 7.7.0.0 Supports all PLCs including the FP7, PLC program length limitation is 10000 steps. This version can update an older basic version. For Windows 10/11.

Software

462.6 MB

22.06.2023

English, german, italian, french, spanish, japanese, chinese, korean

ZIP Ethernet Client FPWIN Pro 7 library, Version 1.4.0. FBs, HTTP\_Client, FTP\_Client and EMAIL\_Client, for FP7CPS31ES, FP7CPS31E, FP7CPS41E, FP7CPS41ES. FB FTP\_Client for AFP0HC32EP and AFP0HC32ET.

Software, Library

990.3 KB

15.10.2021

English

PDF FP I/O Terminal Board Installation Instructions, MJEC-FPIOTB

Manual

1.1 MB

11.07.2022

English

PDF FP Serie Controllori Programmabili

Catalog, Shortform

13.4 MB

Italian

ZIP FP0DPS2 PROFIBUS DP-Slave GSD-File

Software, Library

1.2 KB

01.08.2008

English

PDF FP0H Positioning Unit RTEX User's Manual (FPWIN Pro7), WUME-FP0HRTEXPRO7-07

Manual

8.7 MB

14.02.2023

English

ZIP FP7 AD4 and AD8 software for reading analog inputs plus broken wire dedection. Small user library and sample program for FPWIN Pro 7.

Software, Library

32.1 KB

12.01.2022

English

PDF FPWIN Pro

Data sheet

775.5 KB

28.01.2016

Italian

ZIP FPWIN Pro project sample for FP7 AD4H/AD8 to read the analog input sampling buffer.

Software

11.2 KB

05.06.2018

English

ZIP FPWIN Pro projects in LD and ST code for positioning operations using the pulse output function. (Examples related to FP Sigma User's Manual.)

Software, Programming examples

872.1 KB

01.10.2011

English

ZIP FPWIN Pro projects in LD and ST code for positioning operations using the pulse output function. (Examples related to FP-X User's Manual.)

Software, Programming examples

934.4 KB

01.10.2011

English

ZIP FPWIN Pro projects in LD and ST code for positioning operations with a single-speed and a double-speed inverter. (Examples related to FP-X, FP Sigma, and FP0R User's Manuals.)

Software, Programming examples

306.5 KB

01.10.2011

English

PDF FPWIN Pro7 Introduction Guidance, WUME-FPWINPRO7-01

Manual

4.4 MB

16.07.2019

English

ZIP Fieldbus Master Module (FMU) Library for PROFIBUS-DP, DeviceNet and CANopen (FP-Sigma, FP2)

Software, Library

124.2 KB

01.08.2008

English

ZIP Fieldbus Master Units (FMU) Profibus, Profinet, CANopen and DeviceNet for FP7. Libraries, Samples and Docu V. 1.0.1.0 (for the use in FPWIN Pro 7).

Software, Library

4.5 MB

03.07.2018

English

ZIP Fieldbus Slave Unit(FNS) Libraries for FP0H, FP2 and FP-Sigma. Supported FNS slaves are PROFIBUS, DeviceNet, CANopen, BACnetIP, BACnetMSTP and PROFIINET IO. GSD, EDS and GSDML files are included. FPW…

Software, Library

835.9 KB

05.02.2021

English

PDF IEC60870: la nostra risposta a tante domande

Flyer

4.5 MB

Italian

ZIP Laser Marker Library

Software, Library

4.5 MB

01.03.2010

PDF Les essentiels - Produits d’automatisme, 6215eufr

Catalog, Shortform

5.5 MB

16.06.2023

French

ZIP Motion & Communication FPWIN Pro 7 Library for MINAS A5B/A6B Series, EtherCAT,Version 1.1.0, Included Demo Program. Supported PLCs: FP7

Software, Library

3.4 MB

30.06.2020

English

ZIP Motion & Communication FPWIN Pro 7 Library for MINAS A5N/A6N Series, RTEX, Version 1.0.0.0, Included Demo Program. Supported PLC: FP-XH

Software, Library

1.7 MB

19.04.2018

English

ZIP Motion & Communication FPWIN Pro 7 Library for MINAS A6 Series, Modbus RTU, Version 2.1.0.2, Included Demo Program. Supported PLCs: FP0R, FP-Sigma, FP-X, FP7, FP0H

Software, Library

4.7 MB

12.02.2020

English

ZIP Motion & Communication FPWIN Pro 7 Library for MINAS BL Series, RS485 Serial Protocol, Version 2.2.0.0, Included Demo Program. Supported PLCs: FP-0R, FP-Sigma, FP-X, FP-0H, FP-XH, FP7(for COM ports o…

Software, Library

13.7 MB

08.04.2019

English

ZIP Motion & Communication FPWIN Pro 7 Library for MINAS LIQI/A5/A6 Series, Pulse Train Output, Version 1.0.1.0, Included Demo Program. Supported PLCs: FP0H, FP-XH

Software, Library

1.6 MB

21.07.2021

English

ZIP Motion & Communication Library for MINAS A5 / A6 Series, Pulse Output Control with Multi I/O Unit, Version 1.0.0.0, Included Demo Program. Supported PLCs: FP7

Software, Library

3.9 MB

12.12.2017

English

ZIP Motion & Communication Library for MINAS A5 / A6 Series, Pulse Output Control with Positioning Unit, Version 1.5.0.0, Included Demo Program. Supported PLCs: FP7

Software, Library

2.9 MB

12.12.2017

English

ZIP Motion & Communication Library for MINAS A5N/A6N Series, RTEX, Version 1.2.4, Included Demo Program. Supported PLCs: FP-0H

Software, Library

24.7 MB

24.01.2023

English, German

ZIP Motion & Communication Library for MINAS A5N/A6N Series, RTEX, Version 2.2.0.0, Included Demo Program. Supported PLCs: FP-Sigma

Software, Library

799.8 KB

12.02.2018

English

ZIP Motion Control Library for MINAS LIQI / A5 / A6 Series, Pulse Output Control with compact PLCs, Version 1.0, Included Demo Program. Supported PLCs: FP0R, FP-Sigma, FPX, FP7

Software, Library

1.3 MB

12.12.2017

English

PDF Overview Programmable Logic Controllers

Catalog, Shortform

6 MB

18.10.2021

English

PEW-CONTROL-DRIVER-A4-VIA-RS485 Library

Software, Library

55.4 KB

01.07.2009

ZIP PEW\_A5\_A6\_RS232 Library

Software, Library

3.6 MB

28.04.2015

English

ZIP Software tool used for switching FP0R PLC types from FP0R mode into FP0 mode. After that FP0R PLC can be programmed with software tools supporting FP0.

Software

35.2 MB

17.07.2013

English

ZIP Solar Tracking Library

Software, Library

2.2 MB

01.02.2011

PDF Soluzioni Compact Motion - Dedicate ai costruttori di macchine, MC09/2018-2000

Catalog

7.6 MB

03.09.2018

Italian

PDF Telecontrol: catalogo resumido

Catalog, Shortform

1.1 MB

Spanish

PDF Top seller - Automation products, 6215euen

Catalog, Shortform

15.7 MB

04.05.2023

English

ZIP User library 3964R 3.02 - function blocks for 3964R/RK512 procedure (incl. Engl. a. German online) ( TB-3964R )

Software, Library

4.8 MB

12.12.2016

English, German

ZIP User library ACRON - function blocks ACRON / ACRON connect ( incl. German online)

Software, Library

4.7 MB

ZIP User library GPRS 3.2.2.0 - function blocks for GPRS communication (for FPWIN Pro 7 or newer, incl. English and German online help)

Software, Library

11.8 MB

30.06.2022

English, German

ZIP User library IEC60870 2.611- function blocks for remote control with the IEC 60870-5 standard protocol (for FPWIN Pro 5 and 6, incl. English and German online help)

Software, Library

17.1 MB

09.05.2016

English, German

ZIP User library IEC60870 3.11- function blocks for remote control with the IEC 60870-5 standard protocol (for FPWIN Pro 7 and newer, incl. English and German online help)

Software, Library

17.7 MB

09.05.2016

English, German

User library MBUS - M-Bus master software functions (incl. German online) ( TB-MBUS )

Software, Library

4.2 MB

07.01.2015

English

ZIP User library MoP, V. 1.31 – Function blocks for time slot technique and multipoint connection (for FPWIN Pro 5 and 6, incl. German online help) (TB-MOP)

Software, Library

4.1 MB

01.10.2010

English

ZIP User library MoP, V.2.00 – Function blocks for time slot technique and multipoint connection (for FPWIN Pro 7 and newer, incl. German online help) (TB-MOP)

Software, Library

4.5 MB

15.06.2015

English

User library Modbus RTU - function blocks for Modbus communication with FP-G(FPG951)MCU, (incl. English online help)

Software, Library

177.1 KB

28.04.2015

English

User library Modbus RTU - function blocks for Modbus communication with FP2, FP2 MCU, FP0 and FP-G(FPG951)MCU, not necessary for FP0R, FP-X, FP-G and FP7, (incl. English, German a. Italian online hel…

Software, Library

6.1 MB

07.04.2015

English, German, Italian

ZIP User library PTC - function blocks for process and temperature control (incl. German a. English online help)

Software, Library

5.8 MB

01.02.2013

English

User library SEAB-1F - Software functions to communicate to AEG-telecontrol (master, slave (incl. German online)

Software, Library

4.9 MB

23.09.2014

English, German

ZIP User library for reading ECO POWER METERS (KW1M, KW2M and KW9M)

Software, Library

1.2 MB

10.04.2018

English

ZIP User library timelib 4.1 - function blocks for UNIX/IEC-compliant time for FPWIN Pro 6 and FPWIN Pro 7 (incl. German online help)

Software, Library

2.8 MB

12.12.2016

PDF Übersicht Speicherprogrammierbare Steuerungen

Catalog, Shortform

13.3 MB

02.12.2021

German

PDF Übersicht Topseller Automatisierungstechnik, 6215eude

Catalog, Shortform

15.6 MB

24.04.2023

German

ZIP Control FPWIN Pro7, full and update version 7.7.0.0 FULL: For a full version buy a license separately. Article no. is " FPWINPRO7\_LICENSE ". Please order it at your local Panasonic sales contact. Thi…

Software

462.7 MB

22.06.2023

English, german, italian, french, spanish, japanese, chinese, korean

ZIP FPWIN Pro GSM alarm notification library (NCL-CCMS-LIB) version 1.200, Windows Configuration software (SetupControlConfiguratorMSLib1.102) and manuals. The FPWIN Pro libraries in "NCL-CCMS-LIB" cont…

Software, Library

30.9 MB

02.09.2015

English, German

ZIP FPGT Loader, Vers.2.2.2.0, is a utility for up-/downloading data to and from GT panels(GT01, GT02, GT03-E, GT11, GT21, GT05, GT12, GT32) and PLCs(FP0, FP0R, FP0H, FP7, FP2, FP2SH, FP-Sigma, FP-X, FP-…

Software

79.3 MB

10.08.2021

English, German, Spanish

CVE-2023-28730: Programming Software Control FPWIN Pro


It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessage_normal function, in the do_detwan_cgi module of httpd. An unauthenticated remote attacker without privilege can exploit this vulnerability to perform remote arbitrary code execution, arbitrary system operation or disrupt service.

This issue affects RT-AX56U V2: 3.0.0.4.386_50460; RT-AC86U: 3.0.0.4_386_51529.



:::

*   勒索軟體防護專區
*   遠距辦公資安專區
*   回首頁
*   網站導覽
*   訂閱電子報
*   English

****

*   資安通報
*   Wannacry
*   駭客
*   勒索
*   手機

*   新聞公告News
    *   公告事項
    *   資安新聞
    *   資安活動
    *   電子報
*   資安服務Services
    *   資安通報
        *   一般資安通報
    *   資安聯盟
        *   資安聯盟簡介
        *   規章及會員申請暨異動申請
    *   台灣漏洞揭露平台 (TVN)
        *   TVN (Taiwan Vulnerability Note) 漏洞公告
        *   漏洞揭露政策
        *   漏洞通報
    *   惡意檔案檢測服務 (Virus Check)
    *   網路釣魚通報 (Phishing Check)
        *   網路釣魚通報
        *   釣魚網站列表
*   資安宣導Advocacy
    *   勒索軟體威脅防護專區
    *   遠距辦公資安專區
    *   企業資安事件應變處理指南
    *   威脅分析報告
    *   資安小知識
    *   資訊安全宣導
    *   資安宣導影音
    *   公開文件
*   相關網站Links
    *   國內資安組織
    *   國際資安組織
    *   網路資源
*   關於我們About us
    *   中心簡介
    *   活動紀事
        *   歷年年會活動網站
        *   活動花絮
    *   PGP KEY
    *   聯絡我們
    *   合作夥伴

:::

*   首頁
*   資安服務
*   台灣漏洞揭露平台 (TVN)
*   TVN (Taiwan Vulnerability Note) 漏洞公告

TVN ID

TVN-202307001

CVE ID

CVE-2023-35086

CVSS

9.8 (Critical)  
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

影響產品

RT-AX56U V2: 3.0.0.4.386\_50460; RT-AC86U: 3.0.0.4\_386\_51529

問題描述

ASUS RT-AX56U V2 與 RT-AC86U存在Format String漏洞，do\_detwan\_cgi未對輸入的格式化字串進行適當驗證，遠端攻擊者不須權限，即可利用此漏洞進行遠端程式碼執行，對設備進行任意操作或中斷服務。

解決方法

RT-AX56U V2: 更新至3.0.0.4\_386\_51598; RT-AC86U: 更新至 3.0.0.4.386\_51915

漏洞通報者

資安人員

公開日期

2023-07-17

CVE-2023-35086: ASUS RT-AX56U V2 & RT-AC86U - Format String -1

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in HGiga iSherlock 4.5 (iSherlock-user modules), HGiga iSherlock 5.5 (iSherlock-user modules) allows OS Command Injection.This issue affects iSherlock 4.5: before iSherlock-user-4.5-174; iSherlock 5.5: before iSherlock-user-5.5-174.



:::

*   首頁
*   資安服務
*   台灣漏洞揭露平台 (TVN)
*   TVN (Taiwan Vulnerability Note) 漏洞公告

TVN ID

TVN-202307010

CVE ID

CVE-2023-37292

CVSS

9.8 (Critical)  
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

影響產品

HGiga iSherlock (包含 MailSherlock , SpamSherock, AuditSherlock); iSherlock 4.5: iSherlock-user < 4.5-174 ; iSherlock 5.5: iSherlock-user < 5.5-174

問題描述

桓基科技 iSherlock個人化設定介面 存在 Remote Command Execution弱點。未登入的攻擊者於系統頁面參數注入系統指令後，即可執行系統任意指令，進行任意系統操作或中斷服務。

解決方法

更新 iSherlock-user 套件至 4.5-174(MSR45) 或 5.5-174 (MSR55) 或更新版本

漏洞通報者

Cyku (DEVCORE)

公開日期

2023-07-17

CVE-2023-37292: 桓基科技 HGiga iSherlock - Command Injection

A vulnerability was found in Hospital Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file patientprofile.php. The manipulation of the argument address leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-235079.

Source

CVE