CVE-2018-12257

Exploit

EPSS 0.06%
Published 12.06.2018 18:29:00
Last modified 21.11.2024 03:44:52
Source cve@mitre.org
Teams watchlist Login
Open Login

An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade firmware to a custom image due to lack of SSL validation by changing the nameservers in /etc/resolv.conf to the attacker's server, and serving the expected HTTPS response containing new firmware for the device to download.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Apollotechnologiesinc ≫ Momentum Axel 720p Firmware Version5.1.8

Apollotechnologiesinc ≫ Momentum Axel 720p Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.06%	0.169

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.4	0.8	3.6	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:P/A:N

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2018-12257

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-12257

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-12257

EUVD