Ê©Ä͵µçÆø | 11ÔÂEBO¶à¸ö°²È«·ì϶¹«¸æ

°ä²¼¹¦·ò 2020-12-01

0x00 ·ì϶¸ÅÊö

²úÆ·Ãû³Æ

CVE ID

Àà ÐÍ

·ì϶µÈ¼¶

Ô¶³ÌÀûÓÃ

EcoStruxure Building   Operation

CVE-2020-7569

ÎļþÉÏ´«

¸ßΣ

ÊÇ

CVE-2020-7570

XSS

ÖÐΣ

ÊÇ

CVE-2020-7571

XSS

ÖÐΣ

ÊÇ

CVE-2020-7572

XML±í²¿ÊµÌåÒýÓÃÏ޶Ȳ»µ±

¸ßΣ

ÊÇ

CVE-2020-7573

½Ó¼û½ÚÔì²»µ±

ÖÐΣ

ÊÇ

EcoStruxure Building   Operation Enterprise Server¡¢Enterprise Central

CVE-2020-28209

WindowsËÑË÷õ辶ʱ²»×ãÒýºÅ

¸ßΣ

·ñ

 

0x01 ·ì϶ÏêÇé

 

image.png

 

Ê©Ä͵µçÆøÊÇÒ»¼ÒרһÓÚÄÜÔ´ºÍ×Ô¶¯»¯²úÆ·£¨ÈçICS¡¢SCADAºÍIoT£©µÄ¹©¸øÉÌ¡£EcoStruxure Building Operation£¨EBO£©ÊÇÊ©Ä͵µçÆø¹«Ë¾µÄÂ¥ÓîÔËӪϵͳ¡£

2020Äê11ÔÂ30ÈÕ£¬TIMµÄRed Team ResearchÍŶÓÅû¶EBOÖдæÔÚ¶à¸ö°²È«·ì϶¡£

¸ßΣ·ì϶ÏêÇéÈçÏ£º

EcoStruxure Building Operation ÎļþÉÏ´«·ì϶£¨CVE-2020-7569£©

¸Ã·ì϶ÊÇEBOÖеÄÒ»¸öÎļþÉÏ´«·ì϶£¬ÆäCVSSÆÀ·Ö8.8¡£ÓÉÓÚ¶ÔÓû§ÉÏ´«µÄÎļþûÓнøÐÐÕýÈ·µÄÑéÖ¤£¬¹¥»÷Õß¿ÉÀûÓô˷ì϶ÉÏ´«ËÁÒâ¿ÉÖ´ÐÐÎļþ¡£

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation WebReports V1.9-V3.1

 

 

EcoStruxure Building Operation XML×¢Èë·ì϶£¨CVE-2020-7572£©

¸Ã·ì϶ÊÇEBOÖеÄÒ»¸öXML×¢Èë·ì϶£¬ÆäCVSSÆÀ·Ö8.8¡£ÓÉÓÚ¶ÔXML±í²¿ÊµÌåÒýÓÃÏ޶Ȳ»µ±£¬¹¥»÷Õß¿ÉÀûÓô˷ì϶עÈëËÁÒâXML´úÂë¡£³É¹¦ÀûÓô˷ì϶µÄ¹¥»÷Õß¿ÉÔì³É»Ø¾ø·þÎñ£¨DOS£©¡¢·þÎñÆ÷¶ËÒªÇóαÔ죨CSRF£©»òµ¼Ö»úÃÜÊý¾Ýй¶¡£

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation WebReports V1.9-V3.1

 

 

EcoStruxure Building Operation Enterprise Server ȨÏÞÌáÉý·ì϶£¨CVE-2020-28209£©

¸Ã·ì϶´æÔÚÓÚEcoStruxure Building Operation Enterprise Server ºÍEnterprise CentralÖУ¬ÆäCVSSÆÀ·Ö7.0¡£ÓÉÓÚWindowsËÑË÷õ辶ʱ²»×ãÒýºÅ£¬¿ÉÄܵ¼Ö±¾µØ¹¥»÷Õ߶ÔÏνӴúÀí·þÎñ¶þ½øÔìõ辶µÄ×ÓÎļþ¼ÐÓµÓÐдÈëȨÏÞ£¬×îÖÕ»ñµÃÆô¶¯·þÎñÓû§µÄȨÏÞ¡£

¸Ã·ì϶½öµ±Enterprise ServerºÍEnterprise Central±»×°ÖÃÔÚ·Ç°²È«µØ루²»±ØÒªÖÎÀíԱȨÏÞ£©Ê±²Å´æÔÚ¡£

 

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation Enterprise Server installer V1.9-V3.1

Enterprise Central installer V2.0-V3.1

 

 

0x02 ´ëÖý¨Òé

Ä¿Ç°Ê©Ä͵µçÆøÒѾ­½¨¸´ÁËÓйطì϶£¬½¨ÒéʵʱװÖò¹¶¡¡£

²¹¶¡Á´½Ó£º

https://community.exchange.se.com/t5/EBO-Hotfix-List/bgp/sbo-hotfix-list

 

 

0x03 ²Î¿¼Á´½Ó

https://www.se.com/ww/en/download/document/SEVD-2020-315-04/

https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2020-315-04_EcoStruxure%E2%84%A2_Building_Operation_Security_Notification.pdf&p_Doc_Ref=SEVD-2020-315-04

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28209

 

 

0x04 ¹¦·òÏß

2020-08-11  Ê©Ä͵µçÆø°ä²¼°²È«²¼¸æ

2020-11-30  RTRÍŶӹ«¿ªÅû¶·ì϶

2020-12-01  VSRC°ä²¼°²È«¹«¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö³ß¶È¹ÙÍø£ºhttp://www.first.org/cvss/



image.png