Vulnerability Details CVE-2021-40859
Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.839
EPSS Ranking 99.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://www.redteam-pentesting.de/en/advisories/-advisories-publicised-vulnerability-analyses
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoors
- https://www.redteam-pentesting.de/en/advisories/-advisories-publicised-vulnerability-analyses
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoors
Products affected by CVE-2021-40859
-
cpe:2.3:h:auerswald:compact_5500r:-
-
cpe:2.3:o:auerswald:compact_5500r_firmware:7.8a
-
cpe:2.3:o:auerswald:compact_5500r_firmware:8.0b