Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3.7.11.3 have hardcoded credentials that are easily discovered and can be used by remote attackers to authenticate via ssh. (The credentials are stored in the firmware, encrypted by the crypt function.)
References
Link | Resource |
---|---|
https://baicells.zendesk.com/hc/en-us/articles/6188324645780-2023-1-17-Hard-Coded-Credential-Crypt-Vulnerability | Patch Vendor Advisory |
https://img.baicells.com//Upload/20230118/FILE/BaiBS_RTS_3.7.11.6.IMG.IMG | Release Notes Vendor Advisory |
https://img.baicells.com//Upload/20230118/FILE/BaiBS_RTS_3.7.11.6_Changelog.PDF.pdf | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Baicells
Published: 2023-01-24T15:51:17.731Z
Updated: 2023-01-26T06:03:10.975661Z
Reserved: 2023-01-20T19:38:53.748Z
Link: CVE-2023-24022
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-26T21:18:15.593
Modified: 2023-11-07T04:08:15.733
Link: CVE-2023-24022
JSON object: View
Redhat Information
No data.