SB2018060107 - Multiple vulnerabilities in GE MDS PulseNET and MDS PulseNET Enterprise
Published: June 1, 2018
Security Bulletin ID
SB2018060107
Severity
High
Patch available
YES
Number of vulnerabilities
3
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Improper authentication (CVE-ID: CVE-2018-10611)
The vulnerability allows a remote attacker to bypass authentication on the target system.
The vulnerability exists due to an error in Java Remote Method Invocation (RMI) input port. A remote unauthenticated attacker can bypass authentication and launch applications to support remote code execution through Web Services.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
2) XXE attack (CVE-ID: CVE-2018-10613)
The vulnerability allows a remote unauthenticated attacker to perform XXE attack on the target system.The weakness exists due to insufficient validation for external entities. A remote attacker can supply data containing an XML external entities, perform multiple variants of XXE attacks and exfiltrate data from the host Windows platform.
3) Path traversal (CVE-ID: CVE-2018-10615)
The vulnerability allows a remote unauthenticated attacker to obtain potentially sensitive information on the target system.The weakness exists due to path traversal. A remote attacker perform directory traversal attack and exfiltrate or delete data on the host platform.
Remediation
Install update from vendor's website.