CVE-2023-0755
published 2023-02-23CVE-2023-0755: The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary…
PriorityP265critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
11.78%
95.6th percentile
The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| concrete5 | concrete5 | >= 0 < 8.5.13 | 8.5.13 |
| concrete5 | concrete5 | >= 9.0.0 < 9.2.2 | 9.2.2 |
| ge | digital_industrial_gateway_server | <= 7.612 | — |
| general_electric | digital_industrial_gateway_server | <= v7.612 | — |
| microsoft | net-sdk | <= v5.8.4.971 | — |
| ptc | kepware_kepserverex | <= v6.12 | — |
| ptc | kepware_server | <= 6.12 | — |
| ptc | kepware_serverex | <= 6.12 | — |
| ptc | thingworx_edge_c-sdk | <= 2.2.12.1052 | — |
| ptc | thingworx_edge_microserver | <= 5.4.10.0 | — |
| ptc | thingworx_industrial_connectivity | — | — |
| ptc | thingworx_kepware_edge | <= 1.5 | — |
| ptc | thingworx_kepware_server | <= v6.12 | — |
| ptc | thingworx_net-sdk | <= 5.8.4.971 | — |
| rockwell_automation | kepserver_enterprise | <= v6.12 | — |
| rockwellautomation | kepserver_enterprise | <= 6.12 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is exploitable remotely with no authentication and low attack complexity (AV:N/AC:L/PR:N/UI:N); monitor for unexpected crashes or anomalous connections to ThingWorx Interface / OPC-UA ports on affected Kepware/ThingWorx Edge products ↗
- →The ThingWorx Interface being enabled is the attack surface; detection should focus on whether this interface is active on affected products (KEPServerEX, ThingWorx Kepware Server, ThingWorx Kepware Edge, Rockwell KEPServer Enterprise, GE Digital Industrial Gateway Server) ↗
- →No known public exploits exist as of advisory date (2023-02-23); prioritize detection of exploitation attempts against ThingWorx Edge C-SDK v2.2.12.1052 or lower, EMS v5.4.10.0 or lower, and .NET-SDK v5.8.4.971 or lower ↗
- ·ThingWorx Industrial Connectivity has no patched version listed — all versions are affected; no remediation version is provided for this product ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
PTC ThingWorx Edge
cisa_ics·2023-02-23·CVSS 9.8
[CRITICAL] PTC ThingWorx Edge
ICS Advisory
##
PTC ThingWorx Edge
Release DateFebruary 23, 2023
Alert CodeICSA-23-054-01
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: PTC
- Equipment: ThingWorx Edge
- Vulnerabilities: Improper Validation of Array Index, Integer Overflow or Wraparound
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to crash the device or could allow remote code execution.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following components of PTC ThingWorx are affected:
- ThingWorx Edge C-SDK: v2.2.12.1052 or lower
- .NET-SDK: v5.8.4.971 or lower
- ThingWorx Edge MicroServer (EMS): v5.4.10.0 or lower
- Kepware KEPServerEX: v6.12 or lower
- ThingWorx Kepwar
GHSA
Concrete CMS allows unauthorized access because directories can be created with insecure permissions
ghsa·2023-11-17
CVE-2023-48648 [MEDIUM] Concrete CMS allows unauthorized access because directories can be created with insecure permissions
Concrete CMS allows unauthorized access because directories can be created with insecure permissions
Concrete CMS before 8.5.13 and 9.x before 9.2.2 allows unauthorized access because directories can be created with insecure permissions. File creation functions (such as the Mkdir() function) gives universal access (0777) to created folders by default. Excessive permissions can be granted when creating a directory with permissions greater than 0755 or when the permissions argument is not specified.
GHSA
GHSA-mqp8-25jm-w22w: The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute
ghsa_unreviewed·2023-02-24
CVE-2023-0755 [CRITICAL] CWE-129 GHSA-mqp8-25jm-w22w: The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute
The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code.
No detection rules found.
No public exploits indexed.
2023-02-23
Published