CVE-2023-32173

Unified Automation UaGateway AddServer XML Injection Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the product is in its default configuration. The specific flaw exists within the implementation of the AddServer method. By specifying crafted arguments, an attacker can cause invalid characters to be inserted into an XML configuration file. An attacker can leverage this vulnerability to create a persistent denial-of-service condition on the system. . Was ZDI-CAN-20576.

CVSS v3 5.8 MEDIUM

5.8^/10

CVSS v3 : MEDIUM

Vector : AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

Exploitability : 1.3 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt	Release Notes
https://www.zerodayinitiative.com/advisories/ZDI-23-779/	Third Party Advisory
https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt	Release Notes
https://www.zerodayinitiative.com/advisories/ZDI-23-779/	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:unified-automation:uagateway:*:*:*:*:*:*:*:*

History

08 Aug 2025, 14:17

Type	Values Removed	Values Added
References	~~() https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt -~~	() https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt - Release Notes
References	~~() https://www.zerodayinitiative.com/advisories/ZDI-23-779/ -~~	() https://www.zerodayinitiative.com/advisories/ZDI-23-779/ - Third Party Advisory
CPE		cpe:2.3:a:unified-automation:uagateway::::::::
First Time		Unified-automation Unified-automation uagateway

Information

Published : 2024-05-03 02:15

Updated : 2025-08-08 14:17

NVD link : CVE-2023-32173

Mitre link : CVE-2023-32173

CVE.ORG link : CVE-2023-32173

JSON object : View

Products Affected

unified-automation

uagateway

CWE

CWE-91

XML Injection (aka Blind XPath Injection)

{"id": "CVE-2023-32173", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "zdi-disclosures@trendmicro.com", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 1.3}]}, "published": "2024-05-03T02:15:22.940", "references": [{"url": "https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt", "tags": ["Release Notes"], "source": "zdi-disclosures@trendmicro.com"}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-23-779/", "tags": ["Third Party Advisory"], "source": "zdi-disclosures@trendmicro.com"}, {"url": "https://documentation.unified-automation.com/uagateway/1.5.14/CHANGELOG.txt", "tags": ["Release Notes"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-23-779/", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "zdi-disclosures@trendmicro.com", "description": [{"lang": "en", "value": "CWE-91"}]}], "descriptions": [{"lang": "en", "value": "Unified Automation UaGateway AddServer XML Injection Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the product is in its default configuration.\n\nThe specific flaw exists within the implementation of the AddServer method. By specifying crafted arguments, an attacker can cause invalid characters to be inserted into an XML configuration file. An attacker can leverage this vulnerability to create a persistent denial-of-service condition on the system. \n. Was ZDI-CAN-20576."}, {"lang": "es", "value": "Vulnerabilidad de denegaci\u00f3n de servicio de inyecci\u00f3n XML de Unified Automation UaGateway AddServer. Esta vulnerabilidad permite a atacantes remotos crear una condici\u00f3n de denegaci\u00f3n de servicio en las instalaciones afectadas de Unified Automation UaGateway. Se requiere autenticaci\u00f3n para aprovechar esta vulnerabilidad cuando el producto est\u00e1 en su configuraci\u00f3n predeterminada. La falla espec\u00edfica existe en la implementaci\u00f3n del m\u00e9todo AddServer. Al especificar argumentos manipulados, un atacante puede provocar que se inserten caracteres no v\u00e1lidos en un archivo de configuraci\u00f3n XML. Un atacante puede aprovechar esta vulnerabilidad para crear una condici\u00f3n de denegaci\u00f3n de servicio persistente en el sistema. Era ZDI-CAN-20576."}], "lastModified": "2025-08-08T14:17:43.463", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:unified-automation:uagateway:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80148EAB-1981-4C32-8580-19D024E5305C", "versionEndExcluding": "1.5.14.495"}], "operator": "OR"}]}], "sourceIdentifier": "zdi-disclosures@trendmicro.com"}