CVE-2018-20219 — HIGH (8.1)

Q: How severe is CVE-2018-20219?

CVE-2018-20219 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-20219?

Check the references section above for vendor advisories and patch information. Affected products include: Teracue Enc-400 Hdmi Firmware, Teracue Enc-400 Hdmi, Teracue Enc-400 Hdmi2 Firmware, Teracue Enc-400 Hdmi2, Teracue Enc-400 Hdsdi Firmware.

Vulnerability Description

An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. After successful authentication, the device sends an authentication cookie to the end user such that they can access the devices web administration panel. This token is hard-coded to a string in the source code (/usr/share/www/check.lp file). By setting this cookie in a browser, an attacker is able to maintain access to every ENC-400 device without knowing the password, which results in authentication bypass. Even if a user changes the password on the device, this token is static and unchanged.

CVSS Score

8.1

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Teracue	Enc-400 Hdmi Firmware	<= 2.56
Teracue	Enc-400 Hdmi	-
Teracue	Enc-400 Hdmi2 Firmware	<= 2.56
Teracue	Enc-400 Hdmi2	-
Teracue	Enc-400 Hdsdi Firmware	<= 2.56
Teracue	Enc-400 Hdsdi	-

Related Weaknesses (CWE)

CWE-798

References

http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-MiThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2019/Feb/48Mailing ListThird Party Advisory
https://zxsecurity.co.nz/research.htmlNot Applicable
http://packetstormsecurity.com/files/151802/Teracue-ENC-400-Command-Injection-MiThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2019/Feb/48Mailing ListThird Party Advisory
https://zxsecurity.co.nz/research.htmlNot Applicable

FAQ

What is CVE-2018-20219?

CVE-2018-20219 is a vulnerability with a CVSS score of 8.1 (HIGH). An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. After successful authentication, the device sends an authentication cookie to the end user such that they can access th...

How severe is CVE-2018-20219?

CVE-2018-20219 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-20219?

Check the references section above for vendor advisories and patch information. Affected products include: Teracue Enc-400 Hdmi Firmware, Teracue Enc-400 Hdmi, Teracue Enc-400 Hdmi2 Firmware, Teracue Enc-400 Hdmi2, Teracue Enc-400 Hdsdi Firmware.