cnvd - cnvd-2022-17794

cnvd-2022-17794

Vulnerability from cnvd

Title: Siemens Mendix Runtime访问控制不当漏洞

Description:

Mendix是一个应用程序平台，能够大规模构建并不断改进移动和web应用程序。

Siemens Mendix Runtime存在安全漏洞，攻击者可利用漏洞转储和操纵敏感数据。

Severity: 中

Patch Name: Siemens Mendix Runtime访问控制不当漏洞的补丁

Patch Description:

Mendix是一个应用程序平台，能够大规模构建并不断改进移动和web应用程序。

Siemens Mendix Runtime存在安全漏洞，攻击者可利用漏洞转储和操纵敏感数据。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf

Reference: https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf

Impacted products

Name
Siemens Simcenter STAR-CCM+ Viewer < V2022.1

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-24309"
    }
  },
  "description": "Mendix\u662f\u4e00\u4e2a\u5e94\u7528\u7a0b\u5e8f\u5e73\u53f0\uff0c\u80fd\u591f\u5927\u89c4\u6a21\u6784\u5efa\u5e76\u4e0d\u65ad\u6539\u8fdb\u79fb\u52a8\u548cweb\u5e94\u7528\u7a0b\u5e8f\u3002\n\nSiemens Mendix Runtime\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u8f6c\u50a8\u548c\u64cd\u7eb5\u654f\u611f\u6570\u636e\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-17794",
  "openTime": "2022-03-09",
  "patchDescription": "Mendix\u662f\u4e00\u4e2a\u5e94\u7528\u7a0b\u5e8f\u5e73\u53f0\uff0c\u80fd\u591f\u5927\u89c4\u6a21\u6784\u5efa\u5e76\u4e0d\u65ad\u6539\u8fdb\u79fb\u52a8\u548cweb\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nSiemens Mendix Runtime\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u8f6c\u50a8\u548c\u64cd\u7eb5\u654f\u611f\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Mendix Runtime\u8bbf\u95ee\u63a7\u5236\u4e0d\u5f53\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Siemens Simcenter STAR-CCM+ Viewer \u003c V2022.1"
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf",
  "serverity": "\u4e2d",
  "submitTime": "2022-03-09",
  "title": "Siemens Mendix Runtime\u8bbf\u95ee\u63a7\u5236\u4e0d\u5f53\u6f0f\u6d1e"
}

CVE-2022-24309 (GCVE-0-2022-24309)

Vulnerability from cvelistv5

Published

2022-03-08 11:31

Modified

2024-10-08 08:39

Severity ?

6.8 (Medium) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C

CWE

CWE-284 - Improper Access Control

Summary

A vulnerability has been identified in Mendix Runtime V7 (All versions < V7.23.29), Mendix Runtime V8 (All versions < V8.18.16), Mendix Runtime V9 (All versions < V9.13 only with Runtime Custom Setting *DataStorage.UseNewQueryHandler* set to False). If an entity has an association readable by the user, then in some cases, Mendix Runtime may not apply checks for XPath constraints that parse said associations, within apps running on affected versions. A malicious user could use this to dump and manipulate sensitive data.

References

▼	URL	Tags
	https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf	x_refsource_MISC
	https://cert-portal.siemens.com/productcert/html/ssa-148641.html

Impacted products

Vendor

Product

Version

▼

Siemens

Mendix Runtime V7

Version: 0 < V7.23.29

	Siemens	Mendix Runtime V8	Version: 0 < V8.18.16
	Siemens	Mendix Runtime V9	Version: 0 < V9.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T04:07:02.516Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-148641.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Mendix Runtime V7",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V7.23.29",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Mendix Runtime V8",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V8.18.16",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Mendix Runtime V9",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V9.13",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in Mendix Runtime V7 (All versions \u003c V7.23.29), Mendix Runtime V8 (All versions \u003c V8.18.16), Mendix Runtime V9 (All versions \u003c V9.13 only with Runtime Custom Setting *DataStorage.UseNewQueryHandler* set to False). If an entity has an association readable by the user, then in some cases, Mendix Runtime may not apply checks for XPath constraints that parse said associations, within apps running on affected versions. A malicious user could use this to dump and manipulate sensitive data."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-10-08T08:39:51.939Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-148641.pdf"
        },
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-148641.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2022-24309",
    "datePublished": "2022-03-08T11:31:29",
    "dateReserved": "2022-02-02T00:00:00",
    "dateUpdated": "2024-10-08T08:39:51.939Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted