CVE-2022-1039 — CRITICAL (9.6)

Vulnerability Description

The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access has been obtained, the other passwords can be changed. The weak password on Linux accounts can be accessed via SSH or Telnet, the former of which is by default enabled on trusted interfaces. While the SSH service does not support root login, a user logging in using either of the other Linux accounts may elevate to root access using the su command if they have access to the associated password.

CVSS Score

9.6

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redlion	Da50N Firmware	All versions
Redlion	Da50N	-

Related Weaknesses (CWE)

CWE-521

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-104-03Third Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-104-03Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2022-1039?

CVE-2022-1039 is a vulnerability with a CVSS score of 9.6 (CRITICAL). The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access has been obtained, the other passwords can be changed. The weak password on Linux accounts can be acces...

How severe is CVE-2022-1039?

CVE-2022-1039 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2022-1039?

Check the references section above for vendor advisories and patch information. Affected products include: Redlion Da50N Firmware, Redlion Da50N.