Skip to main content

U Motion Builder CVE-2018-7772

HIGH
SQL Injection (CWE-89)
2018-07-03 cybersecurity@se.com
8.8
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Jul 03, 2018 - 14:29 nvd
HIGH 8.8

DescriptionNVD

The vulnerability exists within processing of applets which are exposed on the web service in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query to determine whether a user is logged in is subject to SQL injection on the loginSeed parameter, which can be embedded in the HTTP cookie of the request.

AnalysisAI

The vulnerability exists within processing of applets which are exposed on the web service in Schneider Electric U.motion Builder software versions prior to v1.3.4. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as SQL Injection (CWE-89), which allows attackers to execute arbitrary SQL commands against the database. The vulnerability exists within processing of applets which are exposed on the web service in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query to determine whether a user is logged in is subject to SQL injection on the loginSeed parameter, which can be embedded in the HTTP cookie of the request. Affected products include: Schneider-Electric U.Motion Builder.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized queries/prepared statements. Never concatenate user input into SQL. Apply least-privilege database permissions.

CVE-2018-7765 HIGH POC
8.8 Jul 03

The vulnerability exists within processing of track_import_export.php in Schneider Electric U.motion Builder software ve

CVE-2017-7974 CRITICAL
9.8 Sep 26

A path traversal information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions

CVE-2017-9957 CRITICAL
9.8 Sep 26

A vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which the web servi

CVE-2017-7973 CRITICAL
9.8 Sep 26

A SQL injection vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which

CVE-2018-7785 CRITICAL
9.8 Jul 03

In Schneider Electric U.motion Builder software versions prior to v1.3.4, a remote command injection allows authenticati

CVE-2018-7777 HIGH POC
8.8 Jul 03

The vulnerability is due to insufficient handling of update_file request parameter on update_module.php in Schneider Ele

CVE-2018-7774 HIGH
8.8 Jul 03

The vulnerability exists within processing of localize.php in Schneider Electric U.motion Builder software versions prio

CVE-2018-7773 HIGH
8.8 Jul 03

The vulnerability exists within processing of nfcserver.php in Schneider Electric U.motion Builder software versions pri

CVE-2018-7769 HIGH
8.8 Jul 03

The vulnerability exists within processing of xmlserver.php in Schneider Electric U.motion Builder software versions pri

CVE-2018-7768 HIGH
8.8 Jul 03

The vulnerability exists within processing of loadtemplate.php in Schneider Electric U.motion Builder software versions

CVE-2018-7767 HIGH
8.8 Jul 03

The vulnerability exists within processing of editobject.php in Schneider Electric U.motion Builder software versions pr

CVE-2018-7766 HIGH
8.8 Jul 03

The vulnerability exists within processing of track_getdata.php in Schneider Electric U.motion Builder software versions

Share

CVE-2018-7772 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy