Lucene search

[email protected]NVD:CVE-2022-47732

HistoryJan 20, 2023 - 5:15 p.m.

CVE-2022-47732

2023-01-2017:15:10

CWE-916

[email protected]

web.nvd.nist.gov

unauthenticated attacker

backup file

admin hash

configuration panel

device access

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

54.9%

JSON

In Yeastar N412 and N824 Configuration Panel 42.x and 45.x, an unauthenticated attacker can create backup file and download it, revealing admin hash, allowing, once cracked, to login inside the Configuration Panel, otherwise, replacing the hash in the archive and restoring it on the device which will change admin password granting access to the device.

Affected configurations

Nvd

Node

yeastarn824Match-

AND

yeastarn824_firmwareMatch-

Node

yeastarn412Match-

AND

yeastarn412_firmwareMatch-

VendorProductVersionCPE
yeastarn824-cpe:2.3:h:yeastar:n824:-:*:*:*:*:*:*:*
yeastarn824_firmware-cpe:2.3:o:yeastar:n824_firmware:-:*:*:*:*:*:*:*
yeastarn412-cpe:2.3:h:yeastar:n412:-:*:*:*:*:*:*:*
yeastarn412_firmware-cpe:2.3:o:yeastar:n412_firmware:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
yeastar	n824	-	cpe:2.3:h:yeastar:n824:-:::::::*
yeastar	n824_firmware	-	cpe:2.3:o:yeastar:n824_firmware:-:::::::*
yeastar	n412	-	cpe:2.3:h:yeastar:n412:-:::::::*
yeastar	n412_firmware	-	cpe:2.3:o:yeastar:n412_firmware:-:::::::*

References

www.swascan.com/security-advisory-yeastar-n412-and-n824-configuration-panel/

www.yeastar.com/n-series-analog-phone-system/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

54.9%

JSON

Related for NVD:CVE-2022-47732

cvelist1 prion1 cve1