CVE-2023-5399
published 2023-10-04CVE-2023-5399: A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause tampering of files on the…
PriorityP274critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
38.52%
98.4th percentile
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path
Traversal') vulnerability exists that could cause tampering of files on the personal computer
running C-Bus when using the File Command.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | spacelogic_c-bus_toolkit | < 1.16.4 | 1.16.4 |
| schneider_electric | c-bus_toolkit | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for path traversal sequences in File Command traffic directed at SpaceLogic C-Bus Toolkit on TCP port 20023, which is the service port used by the vulnerable application. ↗
- →Alert on use of the 'File Command' over the network to the C-Bus Toolkit service, as this is the specific command vector for the CVE-2023-5399 path traversal vulnerability. ↗
- →Flag inbound network connections to TCP/20023 from external or untrusted network segments, as the vulnerability is exploitable remotely with low attack complexity and no authentication required (PR:N/UI:N). ↗
- ·The path traversal vulnerability (CVE-2023-5399) affects SpaceLogic C-Bus Toolkit versions 1.16.3 and prior only; version 1.16.4 contains the fix. Detections should be scoped to unpatched deployments. ↗
- ·No known public exploitation has been reported at time of advisory publication; detections are precautionary. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xvcp-f5rw-f54w: A?CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')?vulnerability exists?that could cause?a path traversal issue?
ghsa_unreviewed·2023-10-04
CVE-2023-5399 [CRITICAL] CWE-22 GHSA-xvcp-f5rw-f54w: A?CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')?vulnerability exists?that could cause?a path traversal issue?
A?CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')?vulnerability exists?that could cause?a path traversal issue?when?using the File Command.
CISA ICS
Schneider Electric SpaceLogic C-Bus Toolkit
cisa_ics·2023-11-02·CVSS 9.8
[CRITICAL] Schneider Electric SpaceLogic C-Bus Toolkit
ICS Advisory
##
Schneider Electric SpaceLogic C-Bus Toolkit
Release DateNovember 02, 2023
Alert CodeICSA-23-306-06
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Schneider Electric
- Equipment: SpaceLogic C-Bus Toolkit
- Vulnerabilities: Improper Privilege Management, Path Traversal
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to perform remote code execution, which could result in tampering of the SpaceLogic C-Bus home automation system.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following Schneider Electric products are affected:
- SpaceLogic C-Bus Toolkit: Versions 1.16.3 and prior
## 3.2 Vulnerability Overview
3.2.1 Impro
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-10-04
Published