Vulnerability Details CVE-2021-26828
OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.801
EPSS Ranking 99.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Proposed Action
OpenPLC ScadaBR contains an unrestricted upload of file with dangerous type vulnerability that allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm.
Ransomware Campaign
Unknown
References
- http://forum.scadabr.com.br/t/report-falhas-de-seguranca-em-versoes-do-scadabr/3615/4
- http://packetstormsecurity.com/files/162564/ScadaBR-1.0-1.1CE-Linux-Shell-Upload.html
- https://youtu.be/k1teIStQr1A
- http://forum.scadabr.com.br/t/report-falhas-de-seguranca-em-versoes-do-scadabr/3615/4
- http://packetstormsecurity.com/files/162564/ScadaBR-1.0-1.1CE-Linux-Shell-Upload.html
- https://youtu.be/k1teIStQr1A
- https://github.com/SCADA-LTS/Scada-LTS/pull/2174
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-26828
Products affected by CVE-2021-26828
-
cpe:2.3:a:scadabr:scadabr:*
-
cpe:2.3:a:scadabr:scadabr:1.0ce
-
cpe:2.3:a:scadabr:scadabr:1.1.0
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-