CVE-2019-6008

An unquoted search path vulnerability in Multiple Yokogawa products for Windows (Exaopc (R1.01.00 ? R3.77.00), Exaplog (R1.10.00 ? R3.40.00), Exaquantum (R1.10.00 ? R3.02.00 and R3.15.00), Exaquantum/Batch (R1.01.00 ? R2.50.40), Exasmoc (all revisions), Exarqe (all revisions), GA10 (R1.01.01 ? R3.05.01), and InsightSuiteAE (R1.01.00 ? R1.06.00)) allow local users to gain privileges via a Trojan horse executable file and execute arbitrary code with eleveted privileges.

CVSS v3 7.8 HIGH
CVSS v2.0 6.8 MEDIUM

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://jvn.jp/vu/JVNVU98228725/index.html	Third Party Advisory
https://www.yokogawa.com/library/resources/white-papers/yokogawa-security-advisory-report-list/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:yokogawa:exaopc::::::windows::*
	cpe:2.3:a:yokogawa:exaplog::::::windows::*
	cpe:2.3:a:yokogawa:exaquantum::::::windows::*
	cpe:2.3:a:yokogawa:exaquantum\/batch::::::windows::*
	cpe:2.3:a:yokogawa:exarqe::::::windows::*
	cpe:2.3:a:yokogawa:exasmoc::::::windows::*
	cpe:2.3:a:yokogawa:ga10::::::windows::*
	cpe:2.3:a:yokogawa:insightsuiteae::::::windows::*

History

No history.

Information

Published : 2019-12-26 16:15

Updated : 2020-01-08 20:39

NVD link : CVE-2019-6008

Mitre link : CVE-2019-6008

CVE.ORG link : CVE-2019-6008

JSON object : View

Products Affected

yokogawa

exaplog
ga10
exaopc
insightsuiteae
exasmoc
exarqe
exaquantum\/batch
exaquantum

CWE

CWE-428

Unquoted Search Path or Element

{"id": "CVE-2019-6008", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2019-12-26T16:15:10.967", "references": [{"url": "http://jvn.jp/vu/JVNVU98228725/index.html", "tags": ["Third Party Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://www.yokogawa.com/library/resources/white-papers/yokogawa-security-advisory-report-list/", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-428"}]}], "descriptions": [{"lang": "en", "value": "An unquoted search path vulnerability in Multiple Yokogawa products for Windows (Exaopc (R1.01.00 ? R3.77.00), Exaplog (R1.10.00 ? R3.40.00), Exaquantum (R1.10.00 ? R3.02.00 and R3.15.00), Exaquantum/Batch (R1.01.00 ? R2.50.40), Exasmoc (all revisions), Exarqe (all revisions), GA10 (R1.01.01 ? R3.05.01), and InsightSuiteAE (R1.01.00 ? R1.06.00)) allow local users to gain privileges via a Trojan horse executable file and execute arbitrary code with eleveted privileges."}, {"lang": "es", "value": "Una vulnerabilidad de ruta de b\u00fasqueda sin comillas en varios productos de Yokogawa para Windows (Exaopc (R1.01.00 hasta R3.77.00), Exaplog (R1.10.00 hasta R3.40.00), Exaquantum (R1.10.00 hasta R3.02.00 y R3.15.00), Exaquantum/Batch (R1.01.00 hasta R2.50.40), Exasmoc (todas las revisiones), Exarqe (todas las revisiones), GA10 (R1.01.01 hasta R3.05.01) e InsightSuiteAE (R1.01.00 hasta R1.06.00)), permite a usuarios locales alcanzar privilegios por medio de un archivo ejecutable de tipo caballo de Troya y ejecutar c\u00f3digo arbitrario con privilegios elevados."}], "lastModified": "2020-01-08T20:39:16.610", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:yokogawa:exaopc:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "91D6B3D6-E908-4E19-AB94-5498B12ED834", "versionEndIncluding": "r3.77.00", "versionStartIncluding": "r1.01.00"}, {"criteria": "cpe:2.3:a:yokogawa:exaplog:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "6D99F269-84E5-4DC1-B17E-D3288138959F", "versionEndIncluding": "r3.30.00", "versionStartIncluding": "r1.10.00"}, {"criteria": "cpe:2.3:a:yokogawa:exaquantum:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "F2F5BE9D-2150-4EEC-B749-E2F552653293", "versionEndIncluding": "r3.02.00", "versionStartIncluding": "r1.10.00"}, {"criteria": "cpe:2.3:a:yokogawa:exaquantum\\/batch:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "95A37F00-92D1-4437-86E3-16606C700169", "versionEndIncluding": "r2.50.40", "versionStartIncluding": "r1.01.00"}, {"criteria": "cpe:2.3:a:yokogawa:exarqe:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "A0563434-02C4-45D2-B119-5586F823281D"}, {"criteria": "cpe:2.3:a:yokogawa:exasmoc:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "2CC76876-D26E-4DE8-8403-4676A2B41923"}, {"criteria": "cpe:2.3:a:yokogawa:ga10:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "859D7D36-8EAF-4368-93B0-5891DD1A14B0", "versionEndIncluding": "r3.05.01", "versionStartIncluding": "r1.01.01"}, {"criteria": "cpe:2.3:a:yokogawa:insightsuiteae:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "4996F8C8-E3BD-425B-AD64-14A98786A2C1", "versionEndIncluding": "r1.06.00", "versionStartIncluding": "r1.01.00"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}

7.8 /10