CVE-2018-20220 - OpenCVE

An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authenticated, and some of these pages may disclose sensitive information.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Teracue	Enc-400 Hdmi2 Enc-400 Hdsdi Firmware Enc-400 Hdmi Firmware Enc-400 Hdsdi Enc-400 Hdmi2 Firmware Enc-400 Hdmi

Configuration 1 [-]

AND

cpe:2.3:o:teracue:enc-400_hdmi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:teracue:enc-400_hdmi:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:teracue:enc-400_hdmi2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:teracue:enc-400_hdmi2:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:teracue:enc-400_hdsdi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:teracue:enc-400_hdsdi:-:*:*:*:*:*:*:*

References

Link	Resource
http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-Missing-Authentication.html	Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2019/Feb/48	Mailing List Third Party Advisory
https://zxsecurity.co.nz/research.html	Not Applicable

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-17T20:51:20

Updated: 2019-03-17T20:51:20

Reserved: 2018-12-19T00:00:00

Link: CVE-2018-20220

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-03-21T16:00:35.407

Modified: 2020-08-24T17:37:01.140

Link: CVE-2018-20220

JSON object: View

Redhat Information

No data.

CWE

CWE-306

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authenticated, and some of these pages may disclose sensitive information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-03-17T20:51:20", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-Missing-Authentication.html"}, {"tags": ["x_refsource_MISC"], "url": "http://seclists.org/fulldisclosure/2019/Feb/48"}, {"tags": ["x_refsource_MISC"], "url": "https://zxsecurity.co.nz/research.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20220", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authenticated, and some of these pages may disclose sensitive information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-Missing-Authentication.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-Missing-Authentication.html"}, {"name": "http://seclists.org/fulldisclosure/2019/Feb/48", "refsource": "MISC", "url": "http://seclists.org/fulldisclosure/2019/Feb/48"}, {"name": "https://zxsecurity.co.nz/research.html", "refsource": "MISC", "url": "https://zxsecurity.co.nz/research.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-20220", "datePublished": "2019-03-17T20:51:20", "dateReserved": "2018-12-19T00:00:00", "dateUpdated": "2019-03-17T20:51:20", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:teracue:enc-400_hdmi_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EE35BEF-ECAF-4664-8FE5-AB72A00EF06D", "versionEndIncluding": "2.56", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:teracue:enc-400_hdmi:-:*:*:*:*:*:*:*", "matchCriteriaId": "13123CDF-3D5D-43F9-A4D4-E108423CCAD8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:teracue:enc-400_hdmi2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "615943FC-CE51-4DE5-AA4F-7FAF35DA97D0", "versionEndIncluding": "2.56", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:teracue:enc-400_hdmi2:-:*:*:*:*:*:*:*", "matchCriteriaId": "D86B2C0A-60B3-4964-9220-E69107BD3DEC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:teracue:enc-400_hdsdi_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "39E93D58-6D19-44A9-A5B6-07CBF5C5F7AD", "versionEndIncluding": "2.56", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:teracue:enc-400_hdsdi:-:*:*:*:*:*:*:*", "matchCriteriaId": "F338471B-BA13-4ECC-B401-3B0D19D6F00F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authenticated, and some of these pages may disclose sensitive information."}, {"lang": "es", "value": "Se ha descubierto un problema en dispositivos Teracue ENC-400 con firmware en versiones 2.56 y anteriores. Aunque la interfaz web requiere autenticaci\u00f3n antes de que se pueda interactuar con ella, gran parte de los endpoints HTTP carecen de autenticaci\u00f3n. Un atacante es capaz de visualizar estas p\u00e1ginas antes de autenticarse; algunas de \u00e9stas podr\u00edan revelar informaci\u00f3n sensible."}], "id": "CVE-2018-20220", "lastModified": "2020-08-24T17:37:01.140", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-03-21T16:00:35.407", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-Missing-Authentication.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2019/Feb/48"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://zxsecurity.co.nz/research.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "nvd@nist.gov", "type": "Primary"}]}