PT-2022-20368 · Red Lion Controls · Crimson 3.0+2
Published
2022-11-17
·
Updated
2022-11-22
·
CVE-2022-3090
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Red Lion Controls Crimson 3.0 versions 707.000 and prior
Red Lion Controls Crimson 3.1 versions 3126.001 and prior
Red Lion Controls Crimson 3.2 versions 3.2.0044.0 and prior
Description
The issue allows an attacker to obtain user credential hashes through path traversal. When a user attempts to open a file using a specific path, the user's password hash is sent to an arbitrary host. This could enable an attacker to obtain user credential hashes.
Recommendations
For Red Lion Controls Crimson 3.0 versions 707.000 and prior, update to a version later than 707.000 to resolve the issue.
For Red Lion Controls Crimson 3.1 versions 3126.001 and prior, update to a version later than 3126.001 to resolve the issue.
For Red Lion Controls Crimson 3.2 versions 3.2.0044.0 and prior, update to a version later than 3.2.0044.0 to resolve the issue.
As a temporary workaround, consider restricting file access to prevent the sending of password hashes to arbitrary hosts.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Crimson 3.0
Crimson 3.1
Crimson 3.2