CVE-2021-40661
published 2022-10-31CVE-2021-40661: A remote, unauthenticated, directory traversal vulnerability was identified within the web interface used by IND780 Advanced Weighing Terminals Build 8.0.07…
PriorityP260high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
4.61%
90.5th percentile
A remote, unauthenticated, directory traversal vulnerability was identified within the web interface used by IND780 Advanced Weighing Terminals Build 8.0.07 March 19, 2018 (SS Label 'IND780_8.0.07'), Version 7.2.10 June 18, 2012 (SS Label 'IND780_7.2.10'). It was possible to traverse the folders of the affected host by providing a traversal path to the 'webpage' parameter in AutoCE.ini This could allow a remote unauthenticated adversary to access additional files on the affected system. This could also allow the adversary to perform further enumeration against the affected host to identify the versions of the systems in use, in order to launch further attacks in future.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mt | ind780_firmware | — | — |
| mt | ind780_firmware | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Look for HTTP GET requests to '/IND780/excalweb.dll' with a 'webpage' parameter containing directory traversal sequences (e.g., '../../'). ↗
- →A successful exploitation response body will contain both 'ExePath=\Windows' and 'WorkDir=\Windows' strings, indicating the AutoCE.ini file was read. ↗
- →Use Shodan queries 'IND780' or 'ind780' to identify exposed devices, and Google dork 'inurl:excalweb.dll' to find internet-facing instances. ↗
- ·The vulnerability affects two specific firmware versions of IND780 Advanced Weighing Terminals; other versions may not be affected. ↗
- ·The traversal is unauthenticated and remote — no credentials or prior access are required to exploit this vulnerability. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
IND780 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2021-40661 [HIGH] IND780 - Local File Inclusion
IND780 - Local File Inclusion
IND780 Advanced Weighing Terminals Build 8.0.07 March 19, 2018 (SS Label 'IND780_8.0.07'), Version 7.2.10 June 18, 2012 (SS Label 'IND780_7.2.10') is vulnerable to unauthenticated local file inclusion. It is possible to traverse the folders of the affected host by providing a relative path to the 'webpage' parameter in AutoCE.ini. This could allow a remote attacker to access additional files on the affected system.
Template:
id: CVE-2021-40661
info:
name: IND780 - Local File Inclusion
author: For3stCo1d
severity: high
description: |
IND780 Advanced Weighing Terminals Build 8.0.07 March 19, 2018 (SS Label 'IND780_8.0.07'), Version 7.2.10 June 18, 2012 (SS Label 'IND780_7.2.10') is vulnerable to unauthenticated local file inclusion. It is possible to travers
https://sidsecure.au/blog/cve-2021-40661/?_sm_pdc=1&_sm_rid=MRRqb4KBDnjBMJk24b40LMS3SKqPMqb4KVn32Krhttps://www.mt.com/au/en/home/products/Industrial_Weighing_Solutions/Terminals-and-Controllers/terminals-bench-floor-scales/advanced-bench-floor-applications/IND780/IND780_.html#overviewpmhttps://sidsecure.au/blog/cve-2021-40661/?_sm_pdc=1&_sm_rid=MRRqb4KBDnjBMJk24b40LMS3SKqPMqb4KVn32Krhttps://www.mt.com/au/en/home/products/Industrial_Weighing_Solutions/Terminals-and-Controllers/terminals-bench-floor-scales/advanced-bench-floor-applications/IND780/IND780_.html#overviewpm
2022-10-31
Published