[Japanese]

JVNDB-2022-000029

KOYO Electronics Screen Creator Advance2 vulnerable to authentication bypass

Overview

Screen Creator Advance2 provided by KOYO ELECTRONICS INDUSTRIES CO., LTD. is a screen development tool for KOYO ELECTRONICS's HMI.
Screen Creator Advance2 contains an authentication bypass vulnerability (CWE-807) due to the improper check for the Remote control setting's account names.

KOYO ELECTRONICS INDUSTRIES CO., LTD. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and KOYO ELECTRONICS INDUSTRIES CO., LTD. coordinated under the Information Security Early Warning Partnership.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 4.0 (Medium) [IPA Score]
  • Attack Vector: Local
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
  • Confidentiality Impact: Low
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics 2.1 (Low) [IPA Score]
  • Access Vector: Local
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
Affected Products


JTEKT ELECTRONICS CORPORATION
  • Screen Creator Advance 2 prior to Ver.0.1.1.3 Build01

According to the developer, the following products are affected by the vulnerability.
  • HMI GC-A2 series
    • GC-A22W-CW
    • GC-A24W-C(W)
    • GC-A26W-C(W)
    • GC-A24
    • GC-A24-M
    • GC-A25
    • GC-A26
    • GC-A26-J2
  • Real time remote monitoring and control tool
    • Remote GC
Impact

An attacker who can access the HMI from Real time remote monitoring and control tool may perform arbitrary operations on the HMI. As a result, the information stored in the HMI may be disclosed, deleted or altered, and/or the equipment may be illegally operated via the HMI.
Solution

[Update the software]
Update the software to the latest version according to the information provided by the developer.
The developer has released the following version.

* Screen Creator Advance2 Ver.0.1.1.3 Build01

[Apply the workaround]
According to the developer, if Remote control function is not use, applying the following workaround to the product may mitigate the impact of this vulnerability.

* Stop using Remote control function
* Change the permission of Remote control setting from "True" to "False" and overwrite the settings on HMI

For more information, refer to the information provided by the developer.
Vendor Information

JTEKT ELECTRONICS CORPORATION
CWE (What is CWE?)

  1. No Mapping(CWE-Other) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2022-29518
References

  1. JVN : JVN#50337155
  2. National Vulnerability Database (NVD) : CVE-2022-29518
Revision History

  • [2022/05/09]
      Web page was published
  • [2024/06/19]
      References : Content was added