Описание
An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication. An attacker on the local network with admin access to the web server, and the ability to manipulate DNS responses, can redirect the SSH connection to an attacker controlled device.
Ссылки
- Third Party Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до MS_4.1_14142 (исключая)
Одновременно
cpe:2.3:o:columbiaweather:weather_microserver_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:columbiaweather:weather_microserver:-:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00031
Низкий
8.8 High
CVSS3
4.4 Medium
CVSS3
Дефекты
CWE-923
Связанные уязвимости
CVSS3: 8.8
github
около 1 месяца назад
An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication. An attacker on the local network with admin access to the web server, and the ability to manipulate DNS responses, can redirect the SSH connection to an attacker controlled device.
EPSS
Процентиль: 8%
0.00031
Низкий
8.8 High
CVSS3
4.4 Medium
CVSS3
Дефекты
CWE-923