CVE-2020-10919

C-MORE HMI EA9 Weak Cryptography for Passwords Information Disclosure Vulnerability

Severity Score

5.9

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise. Was ZDI-CAN-10185.

Esta vulnerabilidad permite a los atacantes remotos revelar información sensible en las instalaciones afectadas de los paneles de pantalla táctil C-MORE HMI EA9 Firmware versión 6.52. La autenticación no es necesaria para explotar esta vulnerabilidad. El fallo específico existe en el manejo de las contraseñas. Al transmitir las contraseñas, el proceso las encripta en un formato recuperable. Un atacante puede aprovechar esta vulnerabilidad para revelar las credenciales, lo que llevaría a un mayor compromiso. Era ZDI-CAN-10185

This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 touch screen panels. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of passwords. When transmitting passwords, the process encrypts them in a recoverable format. An attacker can leverage this vulnerability to disclose credentials, leading to further compromise.

*Credits: Ta-Lun Yen & Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-03-24 CVE Reserved
2020-07-07 CVE Published
2024-08-04 CVE Updated
2024-12-17 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-261: Weak Encoding for Password
CWE-326: Inadequate Encryption Strength

CAPEC

References (1)

URL	Tag	Source
https://www.zerodayinitiative.com/advisories/ZDI-20-806	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-pgmsw Search vendor "Automationdirect" for product "Ea9-pgmsw"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-rhmi Search vendor "Automationdirect" for product "Ea9-rhmi"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t10cl Search vendor "Automationdirect" for product "Ea9-t10cl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t10wcl Search vendor "Automationdirect" for product "Ea9-t10wcl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t12cl Search vendor "Automationdirect" for product "Ea9-t12cl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t15cl Search vendor "Automationdirect" for product "Ea9-t15cl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t15cl-r Search vendor "Automationdirect" for product "Ea9-t15cl-r"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t6cl Search vendor "Automationdirect" for product "Ea9-t6cl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t6cl-r Search vendor "Automationdirect" for product "Ea9-t6cl-r"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t7cl Search vendor "Automationdirect" for product "Ea9-t7cl"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t7cl-r Search vendor "Automationdirect" for product "Ea9-t7cl-r"	-	-	Safe
Automationdirect Search vendor "Automationdirect"	C-more Hmi Ea9 Firmware Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware"	6.52 Search vendor "Automationdirect" for product "C-more Hmi Ea9 Firmware" and version "6.52"	-	Affected	in	Automationdirect Search vendor "Automationdirect"	Ea9-t8cl Search vendor "Automationdirect" for product "Ea9-t8cl"	-	-	Safe