Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ParameterVersionJavaSerializationCodec class. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-20290.
The vulnerability exists in the ParameterVersionJavaSerializationCodec class, which improperly validates user-supplied data before deserialization. An attacker can send a specially crafted payload over the network that will be deserialized without any verification. Code execution occurs in the context of the SYSTEM account, which means the highest privilege level in the Windows operating system.
The attacker gains the ability to execute arbitrary code with SYSTEM privileges on the targeted machine, resulting in complete system takeover, including data access, software installation, and further lateral movement in the network.
Apply patches available from the vendor according to the references provided. It is also recommended to restrict network access to Ignition installations using a firewall and to segment industrial networks (OT/ICS) to reduce the attack surface until the patch is deployed.
Inductive Automation Ignition — versions indicated in the vendor references and in the ZDI-23-1047 advisory
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HInductiveautomation Ignition
APPInductiveautomation8.1.0 – 8.1.35 (bez)
Related vulnerabilities
Inductive Automation Ignition — RCE przez deserialization w JavaSerializationCodec
XSS do RCE w Inductive Automation Ignition OPC UA Quick Client
This vulnerability allows remote attackers to bypass authentication on affected installations of Inductive Aut...
An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vis...
Inductive Automation Ignition OPC UA Quick Client Permissive Cross-domain Policy Remote Code Execution Vulnera...