CVE-2022-31219: Drive Composer Link Following Local Privilege Escalation Vulnerability
First published: Wed Jun 15 2022(Updated: )
Vulnerabilities in the Drive Composer allow a low privileged attacker to create and write to a file anywhere on the file system as SYSTEM with arbitrary content as long as the file does not already exist. The Drive Composer installer file allows a low-privileged user to run a "repair" operation on the product.
Credit: cybersecurity@ch.abb.com cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Automation Builder | >=1.1.0<=2.5.0 | |
| Abb Drive Composer | >=2.0<2.7.1 | |
| Abb Drive Composer | >=2.0<2.7.1 | |
| ABB Mint Workbench | <=5866 |
Remedy
The problem is corrected in the following product versions: Drive Composer entry version 2.7.1 Drive Composer pro version 2.7.1 Customers using Drive composer pro integrated in ABB Automation Builder should refer to section “Workarounds” in this document. Mint WorkBench Build 5868 ABB recommends that customers apply the update at earliest convenience. Updated versions of Drive Composer are available immediately. ABB Automation Builder 2.5.1 and Mint WorkBench Build 5868 will be available before or during Q3/2022.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-31219?
CVE-2022-31219 is a vulnerability in the Drive Composer that allows a low privileged attacker to create and write to a file anywhere on the file system as SYSTEM with arbitrary content.
What is the severity of CVE-2022-31219?
The severity of CVE-2022-31219 is high with a severity value of 7.8.
Which software is affected by CVE-2022-31219?
Abb Automation Builder, Abb Drive Composer (entry version), Abb Drive Composer (pro version), and Abb Mint Workbench are affected by CVE-2022-31219.
How can an attacker exploit CVE-2022-31219?
An attacker can exploit CVE-2022-31219 by running a 'repair' operation on the Drive Composer installer file as a low-privileged user.
Is there a fix available for CVE-2022-31219?
It is recommended to update affected software to versions that are not vulnerable. Please refer to the vendor's security advisory for specific information.
- agent/author
- agent/type
- agent/references
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/severity
- agent/title
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/abb
- canonical/abb automation builder
- version/abb automation builder/1.1.0
- version/abb automation builder/2.5.0
- canonical/abb drive composer
- version/abb drive composer/2.0
- canonical/abb mint workbench
- version/abb mint workbench/5866