CVE-2019-6837 - Vulnerability Details

Vendors	Products
Schneider-electric	Meg6260-0410 Meg6260-0410 Firmware Meg6260-0415 Meg6260-0415 Firmware Meg6501-0001 Meg6501-0001 Firmware Meg6501-0002 Meg6501-0002 Firmware

Link	Providers
https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "U.motion Server", "vendor": "CVE-2019-6837", "versions": [{"status": "affected", "version": "MEG6501-0001 - U.motion KNX server"}, {"status": "affected", "version": "MEG6501-0002 - U.motion KNX Server Plus"}, {"status": "affected", "version": "MEG6260-0410 - U.motion KNX Server Plus"}, {"status": "affected", "version": "Touch 10"}, {"status": "affected", "version": "MEG6260-0415 - U.motion KNX Server Plus"}, {"status": "affected", "version": "Touch 15"}]}], "descriptions": [{"lang": "en", "value": "A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-918", "description": "Server-Side Request Forgery (SSRF): CWE-918", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2019-09-17T19:15:34", "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb", "shortName": "schneider"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cybersecurity@schneider-electric.com", "ID": "CVE-2019-6837", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "U.motion Server", "version": {"version_data": [{"version_value": "MEG6501-0001 - U.motion KNX server"}, {"version_value": "MEG6501-0002 - U.motion KNX Server Plus"}, {"version_value": "MEG6260-0410 - U.motion KNX Server Plus"}, {"version_value": "Touch 10"}, {"version_value": "MEG6260-0415 - U.motion KNX Server Plus"}, {"version_value": "Touch 15"}]}}]}, "vendor_name": "CVE-2019-6837"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Server-Side Request Forgery (SSRF): CWE-918"}]}]}, "references": {"reference_data": [{"name": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01", "refsource": "CONFIRM", "url": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T20:31:04.145Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01"}]}]}, "cveMetadata": {"assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb", "assignerShortName": "schneider", "cveId": "CVE-2019-6837", "datePublished": "2019-09-17T19:15:34", "dateReserved": "2019-01-25T00:00:00", "dateUpdated": "2024-08-04T20:31:04.145Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : U.motion Server (string)

vendor : CVE-2019-6837 (string)

versions : [ »

0 : { »

status : affected (string)

version : MEG6501-0001 - U.motion KNX server (string)

}

1 : { »

status : affected (string)

version : MEG6501-0002 - U.motion KNX Server Plus (string)

}

2 : { »

status : affected (string)

version : MEG6260-0410 - U.motion KNX Server Plus (string)

}

3 : { »

status : affected (string)

version : Touch 10 (string)

}

4 : { »

status : affected (string)

version : MEG6260-0415 - U.motion KNX Server Plus (string)

}

5 : { »

status : affected (string)

version : Touch 15 (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

cweId : CWE-918 (string)

description : Server-Side Request Forgery (SSRF): CWE-918 (string)

lang : en (string)

type : CWE (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2019-09-17T19:15:34 (string)

orgId : 076d1eb6-cfab-4401-b34d-6dfc2a413bdb (string)

shortName : schneider (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cybersecurity@schneider-electric.com (string)

ID : CVE-2019-6837 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : U.motion Server (string)

version : { »

version_data : [ »

0 : { »

version_value : MEG6501-0001 - U.motion KNX server (string)

}

1 : { »

version_value : MEG6501-0002 - U.motion KNX Server Plus (string)

}

2 : { »

version_value : MEG6260-0410 - U.motion KNX Server Plus (string)

}

3 : { »

version_value : Touch 10 (string)

}

4 : { »

version_value : MEG6260-0415 - U.motion KNX Server Plus (string)

}

5 : { »

version_value : Touch 15 (string)

}

]

}

]

}

vendor_name : CVE-2019-6837 (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : Server-Side Request Forgery (SSRF): CWE-918 (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

refsource : CONFIRM (string)

url : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-04T20:31:04.145Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 076d1eb6-cfab-4401-b34d-6dfc2a413bdb (string)

assignerShortName : schneider (string)

cveId : CVE-2019-6837 (string)

datePublished : 2019-09-17T19:15:34 (string)

dateReserved : 2019-01-25T00:00:00 (string)

dateUpdated : 2024-08-04T20:31:04.145Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6501-0001_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "716CA99C-BB90-422B-9EAD-A066D48DE1E8", "versionEndExcluding": "1.3.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6501-0001:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB83620B-3DE0-405A-92F7-99E1B2150E75", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6501-0002_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0D2468D0-D50D-4843-8620-CAD0F40E9329", "versionEndExcluding": "1.3.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6501-0002:-:*:*:*:*:*:*:*", "matchCriteriaId": "CC12A2AA-C006-4606-981A-FE54C1EA3B3F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6260-0410_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DB404224-29BF-4440-963C-0734A51CE6D1", "versionEndExcluding": "1.3.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6260-0410:-:*:*:*:*:*:*:*", "matchCriteriaId": "0936523A-B9CB-451E-BF5E-9E7020DA96A2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6260-0415_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7C17C8F6-8C97-43D5-8ECE-7D9204F3C75D", "versionEndExcluding": "1.3.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:meg6260-0415:-:*:*:*:*:*:*:*", "matchCriteriaId": "F93C8296-5845-498A-964A-D650F45B27B6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL."}, {"lang": "es", "value": "Una vulnerabilidad Server-Side Request Forgery (SSRF): Se presenta una vulnerabilidad CWE-918 en U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), lo que podr\u00eda causar que datos de configuraci\u00f3n del servidor sean expuestos cuando un atacante modifica una URL."}], "id": "CVE-2019-6837", "lastModified": "2024-11-21T04:47:15.103", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-09-17T20:15:12.670", "references": [{"source": "cybersecurity@se.com", "tags": ["Vendor Advisory"], "url": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01"}], "sourceIdentifier": "cybersecurity@se.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-918"}], "source": "cybersecurity@se.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-918"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6501-0001_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 716CA99C-BB90-422B-9EAD-A066D48DE1E8 (string)

versionEndExcluding : 1.3.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6501-0001:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DB83620B-3DE0-405A-92F7-99E1B2150E75 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6501-0002_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D2468D0-D50D-4843-8620-CAD0F40E9329 (string)

versionEndExcluding : 1.3.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6501-0002:-:*:*:*:*:*:*:* (string)

matchCriteriaId : CC12A2AA-C006-4606-981A-FE54C1EA3B3F (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6260-0410_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : DB404224-29BF-4440-963C-0734A51CE6D1 (string)

versionEndExcluding : 1.3.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6260-0410:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0936523A-B9CB-451E-BF5E-9E7020DA96A2 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6260-0415_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7C17C8F6-8C97-43D5-8ECE-7D9204F3C75D (string)

versionEndExcluding : 1.3.7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:schneider-electric:meg6260-0415:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F93C8296-5845-498A-964A-D650F45B27B6 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL. (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad Server-Side Request Forgery (SSRF): Se presenta una vulnerabilidad CWE-918 en U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), lo que podría causar que datos de configuración del servidor sean expuestos cuando un atacante modifica una URL. (string)

}

]

id : CVE-2019-6837 (string)

lastModified : 2024-11-21T04:47:15.103 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 6.4 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:P/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 4.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 9.1 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 5.2 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2019-09-17T20:15:12.670 (string)

references : [ »

0 : { »

source : cybersecurity@se.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-253-01 (string)

}

]

sourceIdentifier : cybersecurity@se.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-918 (string)

}

]

source : cybersecurity@se.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-918 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object