Описание
Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.
Ссылки
- Third Party Advisory
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoorsExploitThird Party Advisory
- Third Party Advisory
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoorsExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:auerswald:compact_5500r_firmware:7.8a:build002:*:*:*:*:*:*
cpe:2.3:h:auerswald:compact_5500r:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:auerswald:compact_5500r_firmware:8.0b:build000:*:*:*:*:*:*
cpe:2.3:h:auerswald:compact_5500r:-:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.81279
Высокий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
около 4 лет назад
Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.
EPSS
Процентиль: 99%
0.81279
Высокий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
NVD-CWE-Other