Main Vulnerability Database Vulnerabilities #VU19307

Use of hard-coded credentials in AudioCodes products - CVE-2019-9229

Published: July 23, 2019

Vulnerability identifier: #VU19307

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-9229

CWE-ID: CWE-798

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
AudioCodes Mediant 800C-MSBR
AudioCodes Mediant M800B-MSBR
AudioCodes Mediant 500-MBSR
AudioCodes Mediant 500L-MSBR

Software vendor:
AudioCodes

Description

The vulnerability allows a local attacker to gain full access to vulnerable system.

The vulnerability exists due to presence of hard-coded credentials in an internal interface, which is exposed to the link-local address 169.254.254.253. A local unauthenticated attacker can access multiple quagga VTYs with the default password "1234" that cannot be changed and execute malicious and unauthorized actions.

Remediation

Install updates from vendor's website.

External links

https://www.cirosec.de/fileadmin/1._Unternehmen/1.4._Unsere_Kompetenzen/Security_Advisory_AudioCodes_Mediant_family.pdf

Use of hard-coded credentials in AudioCodes products - CVE-2019-9229

Description

Remediation

External links

Please verify you're human