CVE-2022-28372

Опубликовано: 14 июл. 2022

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoints provide a means of provisioning a firmware update for the device via crtc_fw_upgrade or crtcfwimage. The URL provided is not validated, and thus allows for arbitrary file upload to the device. This occurs in /lib/lua/luci/crtc.lua (IDU) and /lib/functions/wnc_jsonsh/wnc_crtc_fw.sh (ODU).

Ссылки

https://github.com/JousterL/SecWriteups/blob/main/Verizon%20LVSKIHP%205G%20Modem/readme.md
Exploit
Third Party Advisory
https://www.verizon.com/info/reportsecurityvulnerability/
Vendor Advisory
https://github.com/JousterL/SecWriteups/blob/main/Verizon%20LVSKIHP%205G%20Modem/readme.md
Exploit
Third Party Advisory
https://www.verizon.com/info/reportsecurityvulnerability/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:verizon:lvskihp_indoorunit_firmware:3.4.66.162:*:*:*:*:*:*:*

cpe:2.3:h:verizon:lvskihp_indoorunit:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:verizon:lvskihp_outdoorunit_firmware:3.33.101.0:*:*:*:*:*:*:*

cpe:2.3:h:verizon:lvskihp_outdoorunit:-:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.00249

Низкий

7.5 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-qf9q-2744-2xwj