Security Features in Intelbras Router RF 301K

Published: 2020-12-01

Risk	High
Patch available	NO
Number of vulnerabilities	1
CVE-ID	N/A
CWE-ID	CWE-254
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	RF 301K Hardware solutions / Routers & switches, VoIP, GSM, etc
Vendor	Intelbras

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Security Features

EUVDB-ID: #VU48737

Risk: High

CVSSv4.0: 8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: N/A

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists du to improper permission validation. A remote attacker can send a specially crafted request to read and write to the RouterCfm.cfg file.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

RF 301K: 1.1.2

CPE2.3

cpe:2.3:h:intelbras:rf_301k:1.1.2:*:*:*:*:*:*:*

External links

https://exchange.xforce.ibmcloud.com/vulnerabilities/192442
https://www.exploit-db.com/exploits/49126
https://packetstormsecurity.com/files/160263

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.