Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:40604023
HistoryMar 31, 2023 - 12:00 a.m.

JVN#40604023: Multiple vulnerabilities in Seiko Solutions SkyBridge MB-A100/A110/A200/A130 SkySpider MB-R210

2023-03-3100:00:00
Japan Vulnerability Notes
jvn.jp
15

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.2%

JSON

SkyBridge MB-A100/A110/A200/A130 SkySpider MB-R210 provided by Seiko Solutions Inc. contain multiple vulnerabilities listed below.

Exposure of sensitive information to an unauthorized actor (CWE-200) - CVE-2016-2183

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Base Score: 7.5
CVSS v2 AV:N/AC:L/Au:N/C:C/I:N/A:N Base Score: 7.8

Command injection (CWE-77) - CVE-2022-36556

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score: 8.8
CVSS v2 AV:N/AC:L/Au:S/C:P/I:P/A:P Base Score: 6.5

Unrestricted upload of file with dangerous type (CWE-434) - CVE-2022-36557

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N Base Score: 4.3
CVSS v2 AV:N/AC:L/Au:S/C:N/I:P/A:N Base Score: 4.0

Use of hard-coded credentials (CWE-798) - CVE-2022-36558

Version Vector Score
CVSS v3 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Base Score: 6.2
CVSS v2 AV:L/AC:L/Au:N/C:P/I:N/A:N Base Score: 2.1

Command injection (CWE-77) - CVE-2022-36559

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Base Score: 9.8
CVSS v2 AV:N/AC:L/Au:N/C:P/I:P/A:P Base Score: 7.5

Use of hard-coded credentials (CWE-798) - CVE-2022-36560

Version Vector Score
CVSS v3 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Base Score: 6.2
CVSS v2 AV:L/AC:L/Au:N/C:P/I:N/A:N Base Score: 2.1

Improper privilege management (CWE-269) - CVE-2023-22361

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N Base Score: 4.3
CVSS v2 AV:N/AC:L/Au:S/C:N/I:P/A:N Base Score: 4.0

Missing authentication for critical function (CWE-306) - CVE-2023-22441

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H Base Score: 8.6
CVSS v2 AV:N/AC:L/Au:N/C:P/I:P/A:C Base Score: 9.0

Improper access control (CWE-284) - CVE-2023-23578

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Base Score: 5.3
CVSS v2 AV:N/AC:L/Au:N/C:P/I:N/A:N Base Score: 5.0

Improper following of a certificate’s chain of trust (CWE-296) - CVE-2023-23901

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N Base Score: 4.8
CVSS v2 AV:N/AC:H/Au:N/C:P/I:P/A:N Base Score: 4.0

Missing authentication for critical function (CWE-306) - CVE-2023-23906

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Base Score: 7.5
CVSS v2 AV:N/AC:L/Au:N/C:N/I:N/A:C Base Score: 7.8

Cleartext storage of sensitive information (CWE-312) - CVE-2023-24586

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N Base Score: 3.1
CVSS v2 AV:N/AC:M/Au:S/C:P/I:N/A:N Base Score: 3.5

Cleartext transmission of sensitive information (CWE-319) - CVE-2023-25070

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N Base Score: 4.8
CVSS v2 AV:N/AC:H/Au:N/C:P/I:P/A:N Base Score: 4.0

Use of weak credentials (CWE-1391) - CVE-2023-25072

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Base Score: 6.5
CVSS v2 AV:N/AC:L/Au:N/C:P/I:P/A:N Base Score: 6.4

Use of weak credentials (CWE-1391) - CVE-2023-25184

Version Vector Score
CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Base Score: 5.3
CVSS v2 AV:N/AC:L/Au:N/C:P/I:N/A:N Base Score: 5.0

The developer states that attacks exploiting CVE-2022-36556 have been observed.

Impact

  • A remote attacker may decrypt the communication sent to the WebUI of the product - CVE-2016-2183
  • A user may execute an arbitrary OS command with an administrative privilege of the product - CVE-2022-36556
  • A user may update files or execute an arbitrary command with an administrative privilege of the product - CVE-2022-36557
  • A local attacker may access to the product with an administrative privilege of the product - CVE-2022-36558、CVE-2022-36560
  • A remote attacker may execute an arbitrary OS command with an administrative privilege of the product - CVE-2022-36559
  • A user may alter a WebUI password of the product - CVE-2023-22361
  • A remote attacker may obtain or alter the setting information of the product or execute some critical functions without authentication, e.g., rebooting the product - CVE-2023-22441
  • A remote attacker may connect to the product’s ADB port - CVE-2023-23578
  • A remote attacker may eavesdrop on or alter the communication sent to the WebUI of the product - CVE-2023-23901
  • A remote attacker may execute some critical functions without authentication, e.g., rebooting the product - CVE-2023-23906
  • A user may obtain an APN credential for the product - CVE-2023-24586
  • If the telnet connection is enabled, a remote attacker may eavesdrop on or alter the administrator’s communication to the product - CVE-2023-25070
  • A remote attacker may decrypt password for the WebUI of the product - CVE-2023-25072, CVE-2023-25184

Solution

Update the firmware
Update the firmware to the latest version according to the information provided by the developer.
The developer released the following versions which contain a fix for these vulnerabilities.

  • SkyBridge MB-A100/110 Ver. 4.2.2 and later
  • SkyBridge MB-A200 Ver. 01.00.07 and later
  • SkyBridge BASIC MB-A130 Ver. 1.4.3 and later
    Apply the workaround
    The developer recommends applying a workaround.

For more information, refer to the information provided by the developer.

Products Affected

CVE-2022-36556, CVE-2022-36557, CVE-2022-36558, CVE-2023-22361, CVE-2023-23906, CVE-2023-24586, CVE-2023-25070, CVE-2023-25072

  • SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier
    CVE-2016-2183, CVE-2022-36559, CVE-2022-36560, CVE-2023-22441, CVE-2023-23578, CVE-2023-23901, CVE-2023-25184

  • SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier
    CVE-2023-22441, CVE-2023-23901, CVE-2023-25184

  • SkyBridge BASIC MB-A130 firmware Ver. 1.4.1 and earlier
    CVE-2023-25184

  • SkySpider MB-R210 firmware Ver. 1.01.00 and earlier

Related

prion 16
cve 16
ibm 75
nessus 29
openvas 15
hackerone 7
redhat 10
oraclelinux 2
f5 2
ubuntucve 1
checkpoint_advisories 1
attackerkb 1
cloudfoundry 1
alpinelinux 1
veracode 2
github 1
threatpost 4
openssl 1
centos 1
osv 2
fortinet 1
exploitpack 1
packetstorm 1
ubuntu 2
symantec 1
redhatcve 1
slackware 1
seebug 1
zdt 1
exploitdb 1
prion
prion
Authentication flaw
2023-05-10 06:15:00
Improper access control
2023-05-10 06:15:00
Design/Logic Flaw
2023-05-10 06:15:00
cve
cve
CVE-2022-36556
2022-08-29 23:15:00
CVE-2023-22441
2023-05-10 06:15:11
CVE-2023-23578
2023-05-10 06:15:11
ibm
ibm
Security Bulletin: IBM MessageSight affected by GSKit Sweet32 Birthday attacks (CVE-2016-2183)
2018-06-17 15:36:58
Security Bulletin: A security vulnerability has been identified in GSKit shipped with IBM Spectrum Scale V4 (CVE-2016-2183)
2018-08-01 19:18:54
Security Bulletin: A vulnerability in Python affects PowerKVM
2018-09-26 17:55:02
nessus
nessus
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2017:0719-1)
2017-03-20 00:00:00
F5 Networks BIG-IP : OpenSSL vulnerability (K13167034)
2017-03-02 00:00:00
SSL Medium Strength Cipher Suites Supported (SWEET32)
2009-11-23 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:0719-1)
2021-06-09 00:00:00
Python < 2.7.13, 3.4.x < 3.4.7, 3.5.x < 3.5.3 Sweet32 attack (bpo-27850) - Linux
2021-11-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0726-1)
2021-06-09 00:00:00
hackerone
hackerone
Legal Robot: SWEET32 TLS attack
2017-01-18 18:03:52
Udemy: sweet32
2017-03-31 12:18:22
Yelp: Yelp.com is vulnerable to SWEET32 attack
2017-01-18 17:43:32
redhat
redhat
(RHSA-2019:2859) Moderate: OpenShift Container Platform 4.1.18 security update
2019-09-27 00:13:12
(RHSA-2019:1245) Moderate: Red Hat Quay 3.0.2 security and bug fix update
2019-05-20 14:11:05
(RHSA-2020:3842) Moderate: OpenShift Container Platform 4.5.13 openshift-enterprise-console-container security update
2020-09-30 23:59:28
oraclelinux
oraclelinux
python security update
2018-07-03 00:00:00
python security and bug fix update
2018-11-05 00:00:00
f5
f5
SOL13167034 - OpenSSL vulnerability CVE-2016-2183
2016-10-04 00:00:00
K13167034 : OpenSSL vulnerability CVE-2016-2183
2016-10-04 00:00:00
ubuntucve
ubuntucve
CVE-2016-2183
2016-08-31 00:00:00
checkpoint_advisories
checkpoint_advisories
Weak SSL 3DES Cipher Suites (CVE-2016-2183)
2016-09-25 00:00:00
attackerkb
attackerkb
CVE-2016-2183
2016-09-01 00:00:00
cloudfoundry
cloudfoundry
CVE-2016-2183: Birthday attacks against TLS ciphers with 64bit block size | Cloud Foundry
2019-10-24 00:00:00
alpinelinux
alpinelinux
CVE-2016-2183
2016-09-01 00:59:00
veracode
veracode
Information Disclosure
2017-01-09 02:06:31
Weak Encryption
2019-01-15 09:15:57
github
github
Kyverno vulnerable due to usage of insecure cipher
2023-05-30 20:07:06
threatpost
threatpost
New Collision Attacks Against 3DES, Blowfish Allow for Cookie Decryption
2016-08-24 08:00:39
OpenSSL Patches High-Severity OCSP Bug, Mitigates SWEET32 Attack
2016-09-23 15:47:13
OpenSSL Fixes Critical Bug Introduced by Latest Update
2016-09-26 10:45:04
openssl
openssl
Vulnerability in OpenSSL CVE-2016-2183
2016-08-24 00:00:00
centos
centos
python, tkinter security update
2018-07-13 16:28:09
osv
osv
Kyverno vulnerable due to usage of insecure cipher
2023-05-30 20:07:06
CVE-2016-2183
2016-09-01 00:59:00
fortinet
fortinet
Protect
2019-02-07 00:00:00
exploitpack
exploitpack
IBM Informix Dynamic Server Informix Open Admin Tool - DLL Injection Remote Code Execution Heap Buffer Overflow
2017-05-30 00:00:00
packetstorm
packetstorm
IBM Informix Dynamic Server DLL Injection / Code Execution
2017-05-31 00:00:00
ubuntu
ubuntu
NSS vulnerabilities
2017-04-27 00:00:00
NSS vulnerability
2017-07-31 00:00:00
symantec
symantec
SA133 : Sweet32 Birthday Attack against DES, 3DES, and Blowfish
2016-12-22 08:00:00
redhatcve
redhatcve
CVE-2023-0296
2023-01-16 14:05:12
slackware
slackware
[slackware-security] python
2016-12-28 21:09:54
seebug
seebug
IBM Informix Dynamic Server Open Admin Tool RCE (CVE-2017-1092)
2017-05-24 00:00:00
zdt
zdt
IBM Informix Dynamic Server / Informix Open Admin Tool - DLL Injection / Remote Code Execution / Hea
2017-05-31 00:00:00
exploitdb
exploitdb
IBM Informix Dynamic Server / Informix Open Admin Tool - DLL Injection / Remote Code Execution / Heap Buffer Overflow
2017-05-30 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.2%

JSON
Related for JVN:40604023
prion16cve16ibm75nessus29openvas15hackerone7redhat10oraclelinux2f52ubuntucve1checkpoint_advisories1attackerkb1cloudfoundry1alpinelinux1veracode2github1threatpost4openssl1centos1osv2fortinet1exploitpack1packetstorm1ubuntu2symantec1redhatcve1slackware1seebug1zdt1exploitdb1