Detections
Analytics

Wiesemann & Theis ComServer Use of Insufficiently Random Values (CVE-2022-42787)

high Tenable OT Security Plugin ID 502831

Synopsis

The remote OT asset is affected by a vulnerability.

Description

Multiple W&T products of the Comserver Series use a small number space for allocating sessions ids. After login of an user an unathenticated remote attacker can brute force the users session id and get access to his account on the the device. As the user needs to log in for the attack to be successful a user interaction is required.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

https://cert.vde.com/de/advisories/VDE-2022-043

Plugin Details

Severity: High

ID: 502831

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 1/30/2025

Updated: 1/31/2025

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2022-42787

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:wut:com-server_20ma_firmware, cpe:/o:wut:com-server_highspeed_100basefx_firmware, cpe:/o:wut:com-server_highspeed_compact_firmware, cpe:/o:wut:com-server_highspeed_office_1port_firmware, cpe:/o:wut:com-server_highspeed_19%22_4port_firmware, cpe:/o:wut:com-server_highspeed_industry_firmware, cpe:/o:wut:com-server_highspeed_poe_firmware, cpe:/o:wut:com-server_highspeed_100baselx_firmware, cpe:/o:wut:com-server_highspeed_isolated_firmware, cpe:/o:wut:com-server_highspeed_poe_3x_isolated_firmware, cpe:/o:wut:com-server_highspeed_ul_firmware, cpe:/o:wut:com-server_highspeed_office_4port_firmware, cpe:/o:wut:com-server_highspeed_lc_firmware, cpe:/o:wut:com-server_highspeed_19%22_1port_firmware, cpe:/o:wut:com-server_highspeed_oem_firmware

Required KB Items: Tenable.ot/WiesemannTheis

Exploit Ease: No known exploits are available

Patch Publication Date: 11/10/2022

Vulnerability Publication Date: 11/10/2022

Reference Information

CVE: CVE-2022-42787

CWE: 330