CVE-2023-31151 - Vulnerability Details - OpenCVE

Description

An Improper Certificate Validation vulnerability

in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface

could allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.
See SEL Service Bulletin dated 2022-11-15 for more details.

Published: 2023-05-10

Score: 4.7 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Schweitzer Engineering Laboratories

SEL-3505

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3505-3

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3530

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3530-4

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3532

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3555

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3560S

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3560E

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-2241 RTAC module

unaffected

Version	Status	Constraints
`R147-V0`	affected	< R150-V2
`R147-V0`	affected	< R149-V4
`R147-V0`	affected	< R148-V7
`R147-V0`	affected	< R147-V6

Schweitzer Engineering Laboratories

SEL-3350

unaffected

Version	Status	Constraints
`R148-V0`	affected	< R150-V2
`R148-V0`	affected	< R149-V4
`R148-V0`	affected	< R148-V7

Configuration 1 [-]

AND

cpe:2.3:o:selinc:sel-2241_rtac_module_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-2241_rtac_module:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:selinc:sel-3350_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3350:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:selinc:sel-3505_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3505:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:selinc:sel-3505-3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3505-3:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:selinc:sel-3530_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3530:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:selinc:sel-3530-4_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3530-4:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:selinc:sel-3532_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3532:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:selinc:sel-3555_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3555:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:selinc:sel-3560e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3560e:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:selinc:sel-3560s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:selinc:sel-3560s:-:*:*:*:*:*:*:*

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-35467	An Improper Certificate Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack. See SEL Service Bulletin dated 2022-11-15 for more details.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00213.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://selinc.com/support/security-notifications/external-reports/
https://www.nozominetworks.com/blog/

History

Fri, 24 Jan 2025 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Subscriptions

Selinc Sel-2241 Rtac Module Sel-2241 Rtac Module Firmware Sel-3350 Sel-3350 Firmware Sel-3505 Sel-3505-3 Sel-3505-3 Firmware Sel-3505 Firmware Sel-3530 Sel-3530-4 Sel-3530-4 Firmware Sel-3530 Firmware Sel-3532 Sel-3532 Firmware Sel-3555 Sel-3555 Firmware Sel-3560e Sel-3560e Firmware Sel-3560s Sel-3560s Firmware

MITRE

Status: PUBLISHED

Assigner: SEL

Published: 2023-05-10T19:21:30.649Z

Updated: 2025-01-24T19:04:04.464Z

Reserved: 2023-04-24T23:19:04.957Z

Link: CVE-2023-31151

Vulnrichment

Updated: 2024-08-02T14:45:25.853Z

NVD

Status : Modified

Published: 2023-05-10T20:15:10.147

Modified: 2024-11-21T08:01:30.033

Link: CVE-2023-31151

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-295

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-31151", "assignerOrgId": "5804bb70-792c-43e0-8596-486cc0efe699", "state": "PUBLISHED", "assignerShortName": "SEL", "dateReserved": "2023-04-24T23:19:04.957Z", "datePublished": "2023-05-10T19:21:30.649Z", "dateUpdated": "2025-01-24T19:04:04.464Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3505", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3505-3", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3530", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3530-4", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3532", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3555", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3560S", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3560E", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-2241 RTAC module", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R147-V0", "versionType": "custom"}, {"lessThan": "R147-V6", "status": "affected", "version": "R147-V0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["Web management interface"], "platforms": ["Linux"], "product": "SEL-3350", "vendor": "Schweitzer Engineering Laboratories", "versions": [{"lessThan": "R150-V2", "status": "affected", "version": "R148-V0", "versionType": "custom"}, {"lessThan": "R149-V4", "status": "affected", "version": "R148-V0", "versionType": "custom"}, {"lessThan": "R148-V7", "status": "affected", "version": "R148-V0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Andrea Palanca, Nozomi Networks"}], "datePublic": "2023-05-10T07:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An Improper Certificate Validation vulnerability \n\nin the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface\n\ncould allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.<br><p>See SEL Service Bulletin dated 2022-11-15 for more details.\n\n<br></p>"}], "value": "An Improper Certificate Validation vulnerability \n\nin the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface\n\ncould allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.\nSee SEL Service Bulletin dated 2022-11-15 for more details.\n\n\n\n\n"}], "impacts": [{"capecId": "CAPEC-94", "descriptions": [{"lang": "en", "value": "CAPEC-94 Man in the Middle Attack"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-295", "description": "CWE-295 Improper Certificate Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "5804bb70-792c-43e0-8596-486cc0efe699", "shortName": "SEL", "dateUpdated": "2023-05-10T19:21:30.649Z"}, "references": [{"url": "https://selinc.com/support/security-notifications/external-reports/"}, {"url": "https://www.nozominetworks.com/blog/"}], "source": {"discovery": "EXTERNAL"}, "title": "Improper Certificate Validation", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T14:45:25.853Z"}, "title": "CVE Program Container", "references": [{"url": "https://selinc.com/support/security-notifications/external-reports/", "tags": ["x_transferred"]}, {"url": "https://www.nozominetworks.com/blog/", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-01-24T19:04:00.595043Z", "id": "CVE-2023-31151", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-24T19:04:04.464Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://selinc.com/support/security-notifications/external-reports/", "tags": ["x_transferred"]}, {"url": "https://www.nozominetworks.com/blog/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T14:45:25.853Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-31151", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-01-24T19:04:00.595043Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-24T19:03:54.551Z"}}], "cna": {"title": "Improper Certificate Validation", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Andrea Palanca, Nozomi Networks"}], "impacts": [{"capecId": "CAPEC-94", "descriptions": [{"lang": "en", "value": "CAPEC-94 Man in the Middle Attack"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3505", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3505-3", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3530", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3530-4", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3532", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3555", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3560S", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3560E", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-2241 RTAC module", "versions": [{"status": "affected", "version": "R147-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R148-V7", "versionType": "custom"}, {"status": "affected", "version": "R147-V0", "lessThan": "R147-V6", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}, {"vendor": "Schweitzer Engineering Laboratories", "modules": ["Web management interface"], "product": "SEL-3350", "versions": [{"status": "affected", "version": "R148-V0", "lessThan": "R150-V2", "versionType": "custom"}, {"status": "affected", "version": "R148-V0", "lessThan": "R149-V4", "versionType": "custom"}, {"status": "affected", "version": "R148-V0", "lessThan": "R148-V7", "versionType": "custom"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}], "datePublic": "2023-05-10T07:00:00.000Z", "references": [{"url": "https://selinc.com/support/security-notifications/external-reports/"}, {"url": "https://www.nozominetworks.com/blog/"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An Improper Certificate Validation vulnerability \n\nin the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface\n\ncould allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.\nSee SEL Service Bulletin dated 2022-11-15 for more details.\n\n\n\n\n", "supportingMedia": [{"type": "text/html", "value": "An Improper Certificate Validation vulnerability \n\nin the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface\n\ncould allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.<br><p>See SEL Service Bulletin dated 2022-11-15 for more details.\n\n<br></p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-295", "description": "CWE-295 Improper Certificate Validation"}]}], "providerMetadata": {"orgId": "5804bb70-792c-43e0-8596-486cc0efe699", "shortName": "SEL", "dateUpdated": "2023-05-10T19:21:30.649Z"}}}, "cveMetadata": {"cveId": "CVE-2023-31151", "state": "PUBLISHED", "dateUpdated": "2025-01-24T19:04:04.464Z", "dateReserved": "2023-04-24T23:19:04.957Z", "assignerOrgId": "5804bb70-792c-43e0-8596-486cc0efe699", "datePublished": "2023-05-10T19:21:30.649Z", "assignerShortName": "SEL"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-2241_rtac_module_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FB329AB0-9D1C-4D59-B8BE-D04DF89B9CB6", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-2241_rtac_module:-:*:*:*:*:*:*:*", "matchCriteriaId": "FE4A1AB9-1190-4620-BF97-4A5569E74310", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3350_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "490EC90A-C8C4-4AEA-90E8-DA1C6D11932C", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r148-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3350:-:*:*:*:*:*:*:*", "matchCriteriaId": "FCA7F410-7F74-4EF1-913E-7B34674716DC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3505_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "20A834EB-DE61-4C04-A2D9-E1650E774DB2", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3505:-:*:*:*:*:*:*:*", "matchCriteriaId": "14D78E73-46F2-4D00-A75B-909752E36EB4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3505-3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "01FAF35B-5F98-4C36-B4F9-0C86FD4320CA", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3505-3:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A479C2B-F691-4E04-B551-9F631E5A2A0F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6226FB3D-260D-4F8B-B7D3-B9EA50D80855", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3530:-:*:*:*:*:*:*:*", "matchCriteriaId": "8E56BC08-9C49-4614-8F52-3413B804A128", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3530-4_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EC6D5138-45BB-4297-AAC6-78236C0A1487", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3530-4:-:*:*:*:*:*:*:*", "matchCriteriaId": "BB424E1B-2AE3-449E-9AA1-2AF48C1920FB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3532_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E536C912-E3A2-4344-9162-7E00F8C4298D", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3532:-:*:*:*:*:*:*:*", "matchCriteriaId": "E573857F-C6DC-4E59-8F5B-4C51ED4D69DB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3555_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D0646EA5-FC40-4601-8958-47F0255EDA9F", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3555:-:*:*:*:*:*:*:*", "matchCriteriaId": "282F6DB1-4B0F-424F-B5E4-0827F1E7EE6F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3560e_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "052FF575-FDDE-4C78-97C5-97D1712F8785", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3560e:-:*:*:*:*:*:*:*", "matchCriteriaId": "A3EB8694-DC56-4E35-9659-B2787F872E08", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:selinc:sel-3560s_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "15CCDC18-5789-4B05-8944-9C87B1F58DEC", "versionEndExcluding": "r150-v2", "versionStartIncluding": "r147-v0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:selinc:sel-3560s:-:*:*:*:*:*:*:*", "matchCriteriaId": "F9D2A4A4-B81E-4034-863D-900D95166543", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An Improper Certificate Validation vulnerability \n\nin the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface\n\ncould allow a remote unauthenticated attacker to conduct a man-in-the-middle (MitM) attack.\nSee SEL Service Bulletin dated 2022-11-15 for more details.\n\n\n\n\n"}], "id": "CVE-2023-31151", "lastModified": "2024-11-21T08:01:30.033", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 2.7, "source": "security@selinc.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-05-10T20:15:10.147", "references": [{"source": "security@selinc.com", "tags": ["Vendor Advisory"], "url": "https://selinc.com/support/security-notifications/external-reports/"}, {"source": "security@selinc.com", "tags": ["Third Party Advisory"], "url": "https://www.nozominetworks.com/blog/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://selinc.com/support/security-notifications/external-reports/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.nozominetworks.com/blog/"}], "sourceIdentifier": "security@selinc.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-295"}], "source": "security@selinc.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-295"}], "source": "nvd@nist.gov", "type": "Primary"}]}