CVE-2022-27226 — HIGH (8.8)

Q: How severe is CVE-2022-27226?

CVE-2022-27226 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-27226?

Check the references section above for vendor advisories and patch information. Affected products include: Irz Ru21 Firmware, Irz Ru21, Irz Ru21W Firmware, Irz Ru21W, Irz Rl21 Firmware.

Vulnerability Description

A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. The cronjob will consequently execute the entry on the threat actor's defined interval, leading to remote code execution, allowing the threat actor to gain filesystem access. In addition, if the router's default credentials aren't rotated or a threat actor discovers valid credentials, remote code execution can be achieved without user interaction.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Irz	Ru21 Firmware	<= 2022-03-16
Irz	Ru21	-
Irz	Ru21W Firmware	<= 2022-03-16
Irz	Ru21W	-
Irz	Rl21 Firmware	<= 2022-03-16
Irz	Rl21	-
Irz	Ru41 Firmware	<= 2022-03-16
Irz	Ru41	-
Irz	Rl01 Firmware	<= 2022-03-16
Irz	Rl01	-

Related Weaknesses (CWE)

CWE-352

References

http://packetstormsecurity.com/files/166396/iRZ-Mobile-Router-Cross-Site-RequestExploitThird Party AdvisoryVDB Entry
https://en.irz.ruProduct
https://github.com/SakuraSamuraii/ez-iRZExploitThird Party Advisory
https://johnjhacking.com/blog/cve-2022-27226/ExploitThird Party Advisory
http://packetstormsecurity.com/files/166396/iRZ-Mobile-Router-Cross-Site-RequestExploitThird Party AdvisoryVDB Entry
https://en.irz.ruProduct
https://github.com/SakuraSamuraii/ez-iRZExploitThird Party Advisory
https://johnjhacking.com/blog/cve-2022-27226/ExploitThird Party Advisory

FAQ

What is CVE-2022-27226?

CVE-2022-27226 is a vulnerability with a CVSS score of 8.8 (HIGH). A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. The cronjob will consequently execute the entr...

How severe is CVE-2022-27226?

CVE-2022-27226 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-27226?

Check the references section above for vendor advisories and patch information. Affected products include: Irz Ru21 Firmware, Irz Ru21, Irz Ru21W Firmware, Irz Ru21W, Irz Rl21 Firmware.