CVE-2023-0321 — CRITICAL (9.1)

Vulnerability Description

Campbell Scientific dataloggers CR6, CR300, CR800, CR1000 and CR3000 may allow an attacker to download configuration files, which may contain sensitive information about the internal network. From factory defaults, the mentioned datalogges have HTTP and PakBus enabled. The devices, with the default configuration, allow this situation via the PakBus port. The exploitation of this vulnerability may allow an attacker to download, modify, and upload new configuration files.

CVSS Score

9.1

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Campbellsci	Cr6 Firmware	All versions
Campbellsci	Cr6	-
Campbellsci	Cr300 Firmware	All versions
Campbellsci	Cr300	-
Campbellsci	Cr800 Firmware	All versions
Campbellsci	Cr800	-
Campbellsci	Cr1000 Firmware	All versions
Campbellsci	Cr1000	-
Campbellsci	Cr3000 Firmware	All versions
Campbellsci	Cr3000	-

Related Weaknesses (CWE)

CWE-200

References

https://www.hackplayers.com/2023/01/cve-2023-0321-info-sensible-campbell.htmlExploitThird Party Advisory
https://www.incibe-cert.es/en/early-warning/ics-advisories/disclosure-sensitive-MitigationThird Party Advisory
https://www.hackplayers.com/2023/01/cve-2023-0321-info-sensible-campbell.htmlExploitThird Party Advisory
https://www.incibe-cert.es/en/early-warning/ics-advisories/disclosure-sensitive-MitigationThird Party Advisory

FAQ

What is CVE-2023-0321?

CVE-2023-0321 is a vulnerability with a CVSS score of 9.1 (CRITICAL). Campbell Scientific dataloggers CR6, CR300, CR800, CR1000 and CR3000 may allow an attacker to download configuration files, which may contain sensitive information about the internal network. From fac...

How severe is CVE-2023-0321?

CVE-2023-0321 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2023-0321?

Check the references section above for vendor advisories and patch information. Affected products include: Campbellsci Cr6 Firmware, Campbellsci Cr6, Campbellsci Cr300 Firmware, Campbellsci Cr300, Campbellsci Cr800 Firmware.