Multiple vulnerabilities in Contec FLEXLAN FX3000 and FX2000 series

Published: 2022-09-01

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2022-36158 CVE-2022-36159
CWE-ID	CWE-912 CWE-798
Exploitation vector	Local network
Public exploit	N/A
Vulnerable software Subscribe	FLEXLAN FX3000 series Hardware solutions / Routers & switches, VoIP, GSM, etc FLEXLAN FX2000 series Hardware solutions / Routers & switches, VoIP, GSM, etc
Vendor

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Hidden functionality

EUVDB-ID: #VU66917

Risk: Medium

CVSSv3.1: 7 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-36158

CWE-ID: CWE-912 - Hidden Functionality (Backdoor)

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system

The vulnerability exists due to hidden functionality (backdoor) is present in software. A remote user on the local network can use this functionality to gain full access to the application and execute arbitrary OS command with an administrative privileges.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

FLEXLAN FX3000 series: before 1.16.00

FLEXLAN FX2000 series: before 1.39.00

External links

http://jvn.jp/en/vu/JVNVU98305100/index.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use of hard-coded credentials

EUVDB-ID: #VU66918

Risk: Medium

CVSSv3.1: 7.7 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-36159

CWE-ID: CWE-798 - Use of Hard-coded Credentials