#VU57971 Modification of assumed-immutable data in DAQFactory - CVE-2021-42701

Cybersecurity Help s.r.o.

Published: 2021-11-08

Vulnerability identifier: #VU57971

Vulnerability risk: Medium

CVSSv4.0: 3.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-42701

CWE-ID: CWE-471

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
DAQFactory
Client/Desktop applications / Other client software

Vendor: AzeoTech

Description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to application does not perform validation of the attacker-controlled data, assuming that data is valid and safe. A remote authenticated attacker can trick a victim to open a specially crafted project file, perform a man-in-the-middle (MiTM) attack to obtain credentials and take over the user’s cloud account.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

DAQFactory: 18.1 2347

External links
https://us-cert.cisa.gov/ics/advisories/icsa-21-308-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in AzeoTech DAQFactory