CVE-2019-19823

Опубликовано: 27 янв. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Средний

Описание

A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, and N100RE through 3.4.0; Rutek RTK 11N AP through 2019-12-12; Sapido GR297n through 2019-12-12; CIK TELECOM MESH ROUTER through 2019-12-12; KCTVJEJU Wireless AP through 2019-12-12; Fibergate FGN-R2 through 2019-12-12; Hi-Wifi MAX-C300N through 2019-12-12; HCN MAX-C300N through 2019-12-12; T-broad GN-866ac through 2019-12-12; Coship EMTA AP through 2019-12-12; and IO-Data WN-AC1167R through 2019-12-12.

Ссылки

http://opensource.actiontec.com/sourcecode/wcb3000x/wecb3000n_gpl_0.16.8.4.tgz
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/156083/Realtek-SDK-Information-Disclosure-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2020/Jan/36
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jan/38
Exploit
Mailing List
Third Party Advisory
https://github.com/Saturn49/wecb/blob/755ce19a493c78270c04b5aaf39664f0cddbb420/rtl819x/users/boa/apmib/apmib.h#L13
Third Party Advisory
https://sploit.tech
Third Party Advisory
http://opensource.actiontec.com/sourcecode/wcb3000x/wecb3000n_gpl_0.16.8.4.tgz
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/156083/Realtek-SDK-Information-Disclosure-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2020/Jan/36
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jan/38
Exploit
Mailing List
Third Party Advisory
https://github.com/Saturn49/wecb/blob/755ce19a493c78270c04b5aaf39664f0cddbb420/rtl819x/users/boa/apmib/apmib.h#L13
Third Party Advisory
https://sploit.tech
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:totolink:a3002ru_firmware:*:*:*:*:*:*:*:*

Версия до 2.0.0 (включая)

cpe:2.3:h:totolink:a3002ru:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:totolink:a702r_firmware:*:*:*:*:*:*:*:*

Версия до 2.1.3 (включая)

cpe:2.3:h:totolink:a702r:-:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:o:totolink:n302r_firmware:*:*:*:*:*:*:*:*

Версия до 3.4.0 (включая)

cpe:2.3:h:totolink:n302r:-:*:*:*:*:*:*:*

Конфигурация 4

Одновременно

cpe:2.3:o:totolink:n300rt_firmware:*:*:*:*:*:*:*:*

Версия до 3.4.0 (включая)

cpe:2.3:h:totolink:n300rt:-:*:*:*:*:*:*:*

Конфигурация 5

Одновременно

cpe:2.3:o:totolink:n200re_firmware:*:*:*:*:*:*:*:*

Версия до 4.0.0 (включая)

cpe:2.3:h:totolink:n200re:-:*:*:*:*:*:*:*

Конфигурация 6

Одновременно

cpe:2.3:o:totolink:n150rt_firmware:*:*:*:*:*:*:*:*

Версия до 3.4.0 (включая)

cpe:2.3:h:totolink:n150rt:-:*:*:*:*:*:*:*

Конфигурация 7

Одновременно

cpe:2.3:o:totolink:n100re_firmware:*:*:*:*:*:*:*:*

Версия до 3.4.0 (включая)

cpe:2.3:h:totolink:n100re:-:*:*:*:*:*:*:*

Конфигурация 8

Одновременно

cpe:2.3:o:realtek:rtk_11n_ap_firmware:*:*:*:*:*:*:*:*