HTTP: Inductive Automation Ignition AuthenticatedPage Authentication Bypass
This signature detects attempts to exploit a known vulnerability against Inductive Automation Ignition AuthenticatedPage. A successful attack can lead to security bypass.
Extended Description
This vulnerability allows remote attackers to bypass authentication on affected installations of Inductive Automation Ignition 8.1.15 (b2022030114). Authentication is not required to exploit this vulnerability. The specific flaw exists within com.inductiveautomation.ignition.gateway.web.pages. The issue results from the lack of proper authentication prior to access to functionality. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-17211.
Affected Products
Inductiveautomation ignition
Short Name
HTTP:CTS:INDUT-AUTO-AUTH-BYPASS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
AuthenticatedPage Authentication Automation Bypass CVE-2022-35869 Ignition Inductive
Release Date
03/03/2023
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3577
False Positive
Unknown
Vendors
Inductiveautomation