SB2022042001 - Multiple vulnerabilities in Carrier Hills ComNav

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Missing Encryption of Sensitive Data (CVE-ID: N/A)

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to missing encryption of sensitive data. A local user can gain unauthorized access to sensitive information on the system.

2) Improper Restriction of Excessive Authentication Attempts (CVE-ID: CVE-2022-26519)

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to no limit to the number of attempts to authenticate for the local configuration pages. A local user can perform a brute-force attack and gain unauthorized access to sensitive information on the system.

3) Inadequate Encryption Strength (CVE-ID: CVE-2022-1318)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to inadequate encryption strength. A local attacker can gain access to sensitive information on the system.

4) Predictable Exact Value from Previous Values (CVE-ID: N/A)

The vulnerability allows a local attacker to gain access to potentially sensitive information.

The vulnerability exists due to predictable message size. A local attacker can gain unauthorized access to sensitive information on the system.

Remediation

Install update from vendor's website.

References

• https://www.corporate.carrier.com/Images/CARR-PSA-Hills-ComNav-002-1121_tcm558-149392.pdf
• https://ics-cert.us-cert.gov/advisories/icsa-22-109-01