CVE-2020-11614 - Vulnerability Details - OpenCVE

ReportizFlow

Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace executable files with malicious versions, which the operating system then executes under the context of the user running Hero Designer.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mids\' Reborn Hero Designer Project	Mids\' Reborn Hero Designer

Configuration 1 [-]

cpe:2.3:a:mids\'_reborn_hero_designer_project:mids\'_reborn_hero_designer:2.6.0.7:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/Crytilis/mids-reborn-hero-designer/releases
https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-06-11T16:49:26

Updated: 2024-08-04T11:35:13.620Z

Reserved: 2020-04-07T00:00:00

Link: CVE-2020-11614

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-06-11T17:15:12.317

Modified: 2024-11-21T04:58:15.063

Link: CVE-2020-11614

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace executable files with malicious versions, which the operating system then executes under the context of the user running Hero Designer."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-06-11T16:49:26", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/Crytilis/mids-reborn-hero-designer/releases"}, {"tags": ["x_refsource_MISC"], "url": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2020-11614", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace executable files with malicious versions, which the operating system then executes under the context of the user running Hero Designer."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/Crytilis/mids-reborn-hero-designer/releases", "refsource": "MISC", "url": "https://github.com/Crytilis/mids-reborn-hero-designer/releases"}, {"name": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities", "refsource": "MISC", "url": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T11:35:13.620Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/Crytilis/mids-reborn-hero-designer/releases"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-11614", "datePublished": "2020-06-11T16:49:26", "dateReserved": "2020-04-07T00:00:00", "dateUpdated": "2024-08-04T11:35:13.620Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mids\\'_reborn_hero_designer_project:mids\\'_reborn_hero_designer:2.6.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "2A59FBE0-3B0A-4845-9C09-958EB2C7C773", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace executable files with malicious versions, which the operating system then executes under the context of the user running Hero Designer."}, {"lang": "es", "value": "Reborn Hero Designer de Mids versi\u00f3n 2.6.0.7 descarga el manifiesto de actualizaci\u00f3n, as\u00ed como los archivos de actualizaci\u00f3n, por medio de HTTP en texto sin cifrar. Adem\u00e1s, la aplicaci\u00f3n no lleva a cabo la comprobaci\u00f3n de integridad de los archivos despu\u00e9s de la descarga. Un atacante puede realizar un ataque de tipo man-in-the-middle contra esta conexi\u00f3n y reemplazar los archivos ejecutables con versiones maliciosas, que el sistema operativo ejecuta en el contexto del usuario que ejecuta Hero Designer"}], "id": "CVE-2020-11614", "lastModified": "2024-11-21T04:58:15.063", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "[email protected]", "type": "Primary"}]}, "published": "2020-06-11T17:15:12.317", "references": [{"source": "[email protected]", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/Crytilis/mids-reborn-hero-designer/releases"}, {"source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/Crytilis/mids-reborn-hero-designer/releases"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.doyler.net/security-not-included/mids-reborn-vulnerabilities"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-319"}, {"lang": "en", "value": "CWE-345"}], "source": "[email protected]", "type": "Primary"}]}