CVE-2020-24051 — CRITICAL (9.8)

Vulnerability Description

The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the authentication check for those ONVIF operations can be bypassed. An attacker can abuse this issue to execute privileged operations without authentication, for instance, to create a new Administrator user.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Moog	Exvf5C-2 Firmware	-
Moog	Exvf5C-2	-
Moog	Exvp7C2-3 Firmware	-
Moog	Exvp7C2-3	-

Related Weaknesses (CWE)

CWE-306

References

https://ioac.tv/3hy1xu6ExploitThird Party Advisory
https://ioactive.com/moog-exo-series-multiple-vulnerabilities/Third Party Advisory
https://ioac.tv/3hy1xu6ExploitThird Party Advisory
https://ioactive.com/moog-exo-series-multiple-vulnerabilities/Third Party Advisory

FAQ

What is CVE-2020-24051?

CVE-2020-24051 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the...

How severe is CVE-2020-24051?

CVE-2020-24051 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-24051?

Check the references section above for vendor advisories and patch information. Affected products include: Moog Exvf5C-2 Firmware, Moog Exvf5C-2, Moog Exvp7C2-3 Firmware, Moog Exvp7C2-3.