CVE-2018-7522 - In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call

CVE-2018-7522

Summary

In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. Modifying the data in this location could allow attackers to gain supervisor-level access and control system states.

References

Vulnerable Configurations

cpe:2.3:o:schneider-electric:triconex_tricon_mp_3008_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:triconex_tricon_mp_3008_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:triconex_tricon_mp_3008:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:triconex_tricon_mp_3008:-:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 09-10-2019 - 23:42)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	103947
confirm	https://www.schneider-electric.com/en/download/document/SEVD-2017-347-01/
misc	https://ics-cert.us-cert.gov/advisories/ICSA-18-107-02

Last major update

09-10-2019 - 23:42

Published

04-05-2018 - 17:29

Last modified

09-10-2019 - 23:42