XINJE PLC Program Tool up to 3.5.1 Project File path traversal

A vulnerability, which was classified as problematic, was found in XINJE PLC Program Tool up to 3.5.1. This affects an unknown code block of the component Project File Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field05/12/2022 12:51 PM05/14/2022 04:46 PM
vendorXINJEXINJE
namePLC Program ToolPLC Program Tool
version<=3.5.1<=3.5.1
componentProject File HandlerProject File Handler
cwe23 (directory traversal)23 (directory traversal)
risk11
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_cna_avLL
cvss3_cna_acLL
cvss3_cna_prLL
cvss3_cna_uiRR
cvss3_cna_sUU
cvss3_cna_cHH
cvss3_cna_iHH
cvss3_cna_aHH
urlhttps://claroty.com/2022/05/11/blog-research-from-project-file-to-code-execution-exploiting-vulnerabilities-in-xinje-plc-program-tool/https://claroty.com/2022/05/11/blog-research-from-project-file-to-code-execution-exploiting-vulnerabilities-in-xinje-plc-program-tool/
cveCVE-2021-34605CVE-2021-34605
cve_assigned16232760001623276000
cve_cnaCERT VDECERT VDE
date1652306400 (05/12/2022)1652306400 (05/12/2022)
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss3_vuldb_rcXX
cvss3_cna_basescore7.37.3
cvss2_vuldb_basescore6.56.5
cvss2_vuldb_tempscore6.56.5
cvss3_vuldb_basescore5.55.5
cvss3_vuldb_tempscore5.55.5
cvss3_meta_basescore6.46.4
cvss3_meta_tempscore6.46.4
price_0day$0-$5k$0-$5k
cve_nvd_summaryA zip slip vulnerability in XINJE XD/E Series PLC Program Tool up to version v3.5.1 can provide an attacker with arbitrary file write privilege when opening a specially-crafted project file. This vulnerability can be triggered by manually opening an infected project file, or by initiating an upload program request from an infected Xinje PLC. This can result in remote code execution, information disclosure and denial of service of the system running the XINJE XD/E Series PLC Program Tool.

Do you know our Splunk app?

Download it now for free!