CVE-2018-5399
CVSS V2 High 10
CVSS V3 Critical 9.8
Description
The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55, configured to listen on Port 22 while the DCU is running. The Dropbear server is configured with a hard-coded user name and password combination of root / amroot. The server is configured to use password only authentication not cryptographic keys, however the firmware image contains an RSA host-key for the server. An attacker can exploit this vulnerability to gain root access to the Angstrom Linux operating system and modify any binaries or configuration files in the firmware. Affected releases are Auto-Maskin DCU-210E RP-210E: Versions prior to 3.7 on ARMv7.
Overview
- CVE ID
- CVE-2018-5399
- Assigner
- cret@cert.org
- Vulnerability Status
- Modified
- Published Version
- 2018-10-08T15:29:02
- Last Modified Date
- 2019-10-09T23:41:17
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:o:auto-maskin:dcu-210e_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.7 | |
| cpe:2.3:h:auto-maskin:dcu-210e:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:auto-maskin:rp-210e_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.7 | |
| cpe:2.3:h:auto-maskin:rp-210e:-:*:*:*:*:*:*:* | 0 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- Access Vector
- NETWORK
- Access Compatibility
- LOW
- Authentication
- NONE
- Confidentiality Impact
- COMPLETE
- Integrity Impact
- COMPLETE
- Availability Impact
- COMPLETE
- Base Score
- 10
- Severity
- HIGH
- Exploitability Score
- 10
- Impact Score
- 10
CVSS Version 3
- Version
- 3.0
- Vector String
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Attack Vector
- NETWORK
- Attack Compatibility
- LOW
- Privileges Required
- NONE
- User Interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality Impact
- HIGH
- Availability Impact
- HIGH
- Base Score
- 9.8
- Base Severity
- CRITICAL
- Exploitability Score
- 3.9
- Impact Score
- 5.9
References
| Reference URL | Reference Tags |
|---|---|
| https://www.kb.cert.org/vuls/id/176301 | Third Party Advisory US Government Resource |
| https://www.us-cert.gov/ics/advisories/icsa-20-051-04 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2018-5399 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5399 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-05-10 17:03:59 | Added to TrackCVE | |||
| 2022-12-03 13:01:22 | cert@cert.org | cret@cert.org | CVE Assigner | updated |
| 2022-12-03 13:01:22 | 2018-10-08T15:29Z | 2018-10-08T15:29:02 | CVE Published Date | updated |
| 2022-12-03 13:01:22 | 2019-10-09T23:41:17 | CVE Modified Date | updated | |
| 2022-12-03 13:01:23 | Modified | Vulnerability Status | updated |