Ê©Ä͵µçÆø | 11ÔÂEBO¶à¸ö°²È«·ì϶¹«¸æ

°ä²¼¹¦·ò 2020-12-01

0x00 ·ì϶¸ÅÊö

²úÆ·Ãû³Æ

CVE ID

Àà ÐÍ

·ì϶µÈ¼¶

Ô¶³ÌÀûÓÃ

EcoStruxure Building   Operation

CVE-2020-7569

ÎļþÉÏ´«

¸ßΣ

ÊÇ

CVE-2020-7570

XSS

ÖÐΣ

ÊÇ

CVE-2020-7571

XSS

ÖÐΣ

ÊÇ

CVE-2020-7572

XML±í²¿ÊµÌåÒýÓÃÏ޶Ȳ»µ±

¸ßΣ

ÊÇ

CVE-2020-7573

½Ó¼û½ÚÔì²»µ±

ÖÐΣ

ÊÇ

EcoStruxure Building   Operation Enterprise Server¡¢Enterprise Central

CVE-2020-28209

WindowsËÑË÷õ辶ʱ²»×ãÒýºÅ

¸ßΣ

·ñ

 

0x01 ·ì϶ÏêÇé

 

image.png

 

Ê©Ä͵µçÆøÊÇÒ»¼ÒרһÓÚÄÜÔ´ºÍ×Ô¶¯»¯²úÆ·£¨ÈçICS¡¢SCADAºÍIoT£©µÄ¹©¸øÉÌ ¡£EcoStruxure Building Operation£¨EBO£©ÊÇÊ©Ä͵µçÆø¹«Ë¾µÄÂ¥ÓîÔËӪϵͳ ¡£

2020Äê11ÔÂ30ÈÕ £¬TIMµÄRed Team ResearchÍŶÓÅû¶EBOÖдæÔÚ¶à¸ö°²È«·ì϶ ¡£

¸ßΣ·ì϶ÏêÇéÈçÏ£º

EcoStruxure Building Operation ÎļþÉÏ´«·ì϶£¨CVE-2020-7569£©

¸Ã·ì϶ÊÇEBOÖеÄÒ»¸öÎļþÉÏ´«·ì϶ £¬ÆäCVSSÆÀ·Ö8.8 ¡£ÓÉÓÚ¶ÔÓû§ÉÏ´«µÄÎļþûÓнøÐÐÕýÈ·µÄÑéÖ¤ £¬¹¥»÷Õß¿ÉÀûÓô˷ì϶ÉÏ´«ËÁÒâ¿ÉÖ´ÐÐÎļþ ¡£

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation WebReports V1.9-V3.1

 

 

EcoStruxure Building Operation XML×¢Èë·ì϶£¨CVE-2020-7572£©

¸Ã·ì϶ÊÇEBOÖеÄÒ»¸öXML×¢Èë·ì϶ £¬ÆäCVSSÆÀ·Ö8.8 ¡£ÓÉÓÚ¶ÔXML±í²¿ÊµÌåÒýÓÃÏ޶Ȳ»µ± £¬¹¥»÷Õß¿ÉÀûÓô˷ì϶עÈëËÁÒâXML´úÂë ¡£³É¹¦ÀûÓô˷ì϶µÄ¹¥»÷Õß¿ÉÔì³É»Ø¾ø·þÎñ£¨DOS£©¡¢·þÎñÆ÷¶ËÒªÇóαÔ죨CSRF£©»òµ¼Ö»úÃÜÊý¾Ýй¶ ¡£

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation WebReports V1.9-V3.1

 

 

EcoStruxure Building Operation Enterprise Server ȨÏÞÌáÉý·ì϶£¨CVE-2020-28209£©

¸Ã·ì϶´æÔÚÓÚEcoStruxure Building Operation Enterprise Server ºÍEnterprise CentralÖÐ £¬ÆäCVSSÆÀ·Ö7.0 ¡£ÓÉÓÚWindowsËÑË÷õ辶ʱ²»×ãÒýºÅ £¬¿ÉÄܵ¼Ö±¾µØ¹¥»÷Õ߶ÔÏνӴúÀí·þÎñ¶þ½øÔìõ辶µÄ×ÓÎļþ¼ÐÓµÓÐдÈëȨÏÞ £¬×îÖÕ»ñµÃÆô¶¯·þÎñÓû§µÄȨÏÞ ¡£

¸Ã·ì϶½öµ±Enterprise ServerºÍEnterprise Central±»×°ÖÃÔÚ·Ç°²È«µØ루²»±ØÒªÖÎÀíԱȨÏÞ£©Ê±²Å´æÔÚ ¡£

 

Ó°ÏìÁìÓò£º

EcoStruxure Building Operation Enterprise Server installer V1.9-V3.1

Enterprise Central installer V2.0-V3.1

 

 

0x02 ´ëÖý¨Òé

Ä¿Ç°Ê©Ä͵µçÆøÒѾ­½¨¸´ÁËÓйطì϶ £¬½¨ÒéʵʱװÖò¹¶¡ ¡£

²¹¶¡Á´½Ó£º

https://community.exchange.se.com/t5/EBO-Hotfix-List/bgp/sbo-hotfix-list

 

 

0x03 ²Î¿¼Á´½Ó

https://www.se.com/ww/en/download/document/SEVD-2020-315-04/

https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2020-315-04_EcoStruxure%E2%84%A2_Building_Operation_Security_Notification.pdf&p_Doc_Ref=SEVD-2020-315-04

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28209

 

 

0x04 ¹¦·òÏß

2020-08-11  Ê©Ä͵µçÆø°ä²¼°²È«²¼¸æ

2020-11-30  RTRÍŶӹ«¿ªÅû¶·ì϶

2020-12-01  VSRC°ä²¼°²È«¹«¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö³ß¶È¹ÙÍø£ºhttp://www.first.org/cvss/



image.png