Lucene search

CERTVDECVELIST:CVE-2022-3203

HistoryOct 21, 2022 - 12:30 p.m.

CVE-2022-3203 ORing net IAP-420(+) Hidden Functionality

2022-10-2112:30:12

CWE-912

CERTVDE

www.cve.org

cve-2022-3203

default credentials

telnet server

hidden functionality

lan

wifi

administrative shell

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.003

Percentile

68.8%

JSON

On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot permanently be disabled. You can connect to the device via LAN or WiFi with hardcoded credentials and get an administrative shell. These credentials are reset to defaults with every reboot.

CNA Affected

[
  {
    "vendor": "ORing",
    "product": "IAP-420(+)",
    "versions": [
      {
        "version": "FW 2.0m",
        "status": "affected"
      }
    ]
  }
]

References

mads.uniud.it/2022/09/lord-of-the-orings/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.003

Percentile

68.8%

JSON

Related for CVELIST:CVE-2022-3203