Vulnerability Details CVE-2022-36159
Contec FXA3200 version 1.13 and under were discovered to contain a hard coded hash password for root stored in the component /etc/shadow. As the password strength is weak, it can be cracked in few minutes. Through this credential, a malicious actor can access the Wireless LAN Manager interface and open the telnet port then sniff the traffic or inject any malware.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.5%
CVSS Severity
CVSS v3 Score 8.8
References
- https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4
- https://jvn.jp/en/vu/JVNVU98305100/
- https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo
- https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section
- https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4
- https://jvn.jp/en/vu/JVNVU98305100/
- https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo
- https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section
Products affected by CVE-2022-36159
-
cpe:2.3:h:contec:fxa2000:-
-
cpe:2.3:h:contec:fxa3000:-
-
cpe:2.3:h:contec:fxa3020:-
-
cpe:2.3:h:contec:fxa3200:-
-
cpe:2.3:o:contec:fxa2000_firmware:*
-
cpe:2.3:o:contec:fxa3000_firmware:*
-
cpe:2.3:o:contec:fxa3020_firmware:*
-
cpe:2.3:o:contec:fxa3200_firmware:1.13.00