var-201608-0258
Vulnerability from variot
SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote attackers to execute arbitrary SQL commands via unspecified fields. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getcaminfo.asp script. When parsing the VWID element, the process fails to properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to execute arbitrary code in the context of the database access process, which runs as Administrator. Moxa SoftCMS is a set of central management software suitable for monitoring systems. Versions prior to Moxa SoftCMS 1.5 is vulnerable. The software supports real-time video monitoring, video playback and event management, etc
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 1.5,
"vendor": "moxa",
"version": "1.4"
},
{
"_id": null,
"model": "softcms",
"scope": "lte",
"trust": 1.0,
"vendor": "moxa",
"version": "1.4"
},
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 0.9,
"vendor": "moxa",
"version": "1.3"
},
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 0.9,
"vendor": "moxa",
"version": "1.2"
},
{
"_id": null,
"model": "softcms",
"scope": "lt",
"trust": 0.8,
"vendor": "moxa",
"version": "1.5"
},
{
"_id": null,
"model": "softcms",
"scope": null,
"trust": 0.7,
"vendor": "moxa",
"version": null
},
{
"_id": null,
"model": "softcms",
"scope": "ne",
"trust": 0.3,
"vendor": "moxa",
"version": "1.5"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "BID",
"id": "92262"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
},
{
"db": "NVD",
"id": "CVE-2016-5792"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:moxa:softcms",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
}
]
},
"credits": {
"_id": null,
"data": "Zhou Yu",
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
}
],
"trust": 0.7
},
"cve": "CVE-2016-5792",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2016-5792",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "CVE-2016-5792",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-06107",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-94611",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2016-5792",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-5792",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2016-5792",
"trust": 0.8,
"value": "Critical"
},
{
"author": "ZDI",
"id": "CVE-2016-5792",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2016-06107",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201608-056",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-94611",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "VULHUB",
"id": "VHN-94611"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
},
{
"db": "NVD",
"id": "CVE-2016-5792"
}
]
},
"description": {
"_id": null,
"data": "SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote attackers to execute arbitrary SQL commands via unspecified fields. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getcaminfo.asp script. When parsing the VWID element, the process fails to properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to execute arbitrary code in the context of the database access process, which runs as Administrator. Moxa SoftCMS is a set of central management software suitable for monitoring systems. \nVersions prior to Moxa SoftCMS 1.5 is vulnerable. The software supports real-time video monitoring, video playback and event management, etc",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-5792"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "BID",
"id": "92262"
},
{
"db": "VULHUB",
"id": "VHN-94611"
}
],
"trust": 3.15
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2016-5792",
"trust": 4.1
},
{
"db": "ICS CERT",
"id": "ICSA-16-215-01",
"trust": 2.8
},
{
"db": "ZDI",
"id": "ZDI-16-463",
"trust": 2.1
},
{
"db": "BID",
"id": "92262",
"trust": 2.0
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3757",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2016-06107",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-94611",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "VULHUB",
"id": "VHN-94611"
},
{
"db": "BID",
"id": "92262"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
},
{
"db": "NVD",
"id": "CVE-2016-5792"
}
]
},
"id": "VAR-201608-0258",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "VULHUB",
"id": "VHN-94611"
}
],
"trust": 1.29090906
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06107"
}
]
},
"last_update_date": "2024-11-23T21:54:29.613000Z",
"patch": {
"_id": null,
"data": [
{
"title": "SoftCMS Trial version",
"trust": 0.8,
"url": "http://www.moxa.com/support/download.aspx?type=support\u0026id=11362"
},
{
"title": "Moxa has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-215-01"
},
{
"title": "Patch for Moxa SoftCMS SQL Injection Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/80147"
},
{
"title": "Moxa SoftCMS SQL Repair measures for injecting vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63445"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-89",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-94611"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "NVD",
"id": "CVE-2016-5792"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 3.5,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-16-215-01"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/92262"
},
{
"trust": 1.1,
"url": "http://www.zerodayinitiative.com/advisories/zdi-16-463"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-5792"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-5792"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/bid/92262/"
},
{
"trust": 0.3,
"url": "http://www.moxa.com/product/softcms.htm"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-16-463/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-463"
},
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "VULHUB",
"id": "VHN-94611"
},
{
"db": "BID",
"id": "92262"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
},
{
"db": "NVD",
"id": "CVE-2016-5792"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-16-463",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2016-06107",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-94611",
"ident": null
},
{
"db": "BID",
"id": "92262",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004385",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2016-5792",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2016-08-10T00:00:00",
"db": "ZDI",
"id": "ZDI-16-463",
"ident": null
},
{
"date": "2016-08-08T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06107",
"ident": null
},
{
"date": "2016-08-08T00:00:00",
"db": "VULHUB",
"id": "VHN-94611",
"ident": null
},
{
"date": "2016-08-02T00:00:00",
"db": "BID",
"id": "92262",
"ident": null
},
{
"date": "2016-08-18T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004385",
"ident": null
},
{
"date": "2016-08-04T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-056",
"ident": null
},
{
"date": "2016-08-08T00:59:11.673000",
"db": "NVD",
"id": "CVE-2016-5792",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2016-08-10T00:00:00",
"db": "ZDI",
"id": "ZDI-16-463",
"ident": null
},
{
"date": "2016-08-08T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06107",
"ident": null
},
{
"date": "2016-11-28T00:00:00",
"db": "VULHUB",
"id": "VHN-94611",
"ident": null
},
{
"date": "2016-08-02T00:00:00",
"db": "BID",
"id": "92262",
"ident": null
},
{
"date": "2016-08-18T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004385",
"ident": null
},
{
"date": "2016-08-08T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-056",
"ident": null
},
{
"date": "2024-11-21T02:55:01.193000",
"db": "NVD",
"id": "CVE-2016-5792",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Moxa SoftCMS SQL Injection Vulnerability",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06107"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
}
],
"trust": 1.2
},
"type": {
"_id": null,
"data": "SQL injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-056"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…