CVE-2023-31167 in SEL-5036 acSELerator Bay Screen Builder Softwareinfo

Summary

by MITRE • 08/31/2023

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Schweitzer Engineering Laboratories SEL-5036 acSELerator Bay Screen Builder Software on Windows allows Relative Path Traversal.



SEL acSELerator Bay Screen Builder software is distributed by SEL-5033 SEL acSELerator RTAC, SEL-5030 Quickset, and SEL Compass. CVE-2023-31167 and was patched in the acSELerator Bay Screen Builder release available on 20230602. Please contact SEL for additional details.


This issue affects SEL-5036 acSELerator Bay Screen Builder Software: before 1.0.49152.778.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 09/27/2023

The CVE-2023-31167 vulnerability represents a critical path traversal flaw in Schweitzer Engineering Laboratories SEL-5036 acSELerator Bay Screen Builder software, which operates within Windows environments and specifically affects the acSELerator Bay Screen Builder component. This vulnerability stems from improper limitation of pathname parameters to restricted directories, creating a classic relative path traversal condition that allows attackers to navigate beyond intended file system boundaries. The flaw is particularly concerning as it affects industrial control systems used in critical infrastructure environments where security is paramount. The vulnerability impacts the acSELerator Bay Screen Builder software version prior to 1.0.49152.778, making all earlier releases susceptible to exploitation. This issue is categorized under CWE-22, which specifically addresses improper limitation of a pathname to a restricted directory, a well-documented weakness in software security that has been exploited in numerous industrial control system attacks.

The technical exploitation of this vulnerability occurs through the manipulation of file path parameters during the operation of the acSELerator Bay Screen Builder software, allowing attackers to traverse directory structures and potentially access or modify files outside of the intended application scope. The relative path traversal mechanism enables malicious actors to craft specific input sequences that bypass normal file access controls, potentially leading to unauthorized file system access, data exfiltration, or even system compromise. This type of vulnerability is particularly dangerous in industrial environments where the acSELerator Bay Screen Builder software is used for configuration and management of critical power system equipment. The vulnerability exists in the software's handling of file paths when processing user input or configuration files, where insufficient validation allows attackers to specify paths that extend beyond the application's designated working directories.

The operational impact of CVE-2023-31167 extends significantly within industrial control systems environments where SEL-5036 acSELerator Bay Screen Builder software is deployed, potentially compromising the integrity of power system configurations and operational data. Attackers could exploit this vulnerability to access sensitive configuration files, modify system parameters, or potentially disrupt critical power system operations. The affected software components include SEL-5033 SEL acSELerator RTAC, SEL-5030 Quickset, and SEL Compass systems, which together form a comprehensive industrial control ecosystem. This vulnerability could enable adversaries to gain unauthorized access to system configurations, potentially leading to operational disruptions, data manipulation, or even physical safety risks in power generation and distribution systems. The attack surface is particularly concerning given that the vulnerability affects the configuration management software used in critical infrastructure environments.

Mitigation strategies for CVE-2023-31167 require immediate software updates to version 1.0.49152.778 or later, which contains the necessary patches to address the path traversal vulnerability. Organizations should implement comprehensive vulnerability management processes that include regular security assessments of industrial control systems and ensure all software components are updated according to vendor security advisories. Network segmentation and access controls should be implemented to limit exposure of the affected systems to untrusted networks and users. Additionally, monitoring systems should be deployed to detect anomalous file access patterns that might indicate exploitation attempts. The vulnerability aligns with ATT&CK technique T1059.007 for Windows Command Shell and T1566 for credential access, making it particularly relevant to industrial control system threat models. Security teams should also implement input validation controls and file system access restrictions to prevent unauthorized path traversal attempts, while maintaining detailed audit logs to track system access and modifications. Organizations should contact Schweitzer Engineering Laboratories directly for specific patch deployment guidance and security advisory details related to this vulnerability.

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!