#VU29309 Use of Hard-coded Cryptographic Key in ENTTEC products - CVE-2019-12776

Cybersecurity Help s.r.o.

Published: 2020-06-26

Vulnerability identifier: #VU29309

Vulnerability risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-12776

CWE-ID: CWE-321

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Datagate Mk2
Hardware solutions / Other hardware appliances
Storm 24
Hardware solutions / Other hardware appliances
Pixelator
Hardware solutions / Other hardware appliances
E-Streamer Mk2
Hardware solutions / Other hardware appliances

Vendor: ENTTEC

Description

The vulnerability allows a remote attacker to gain unauthorized access to the system.

The vulnerability exists due to the affected products include hard-coded SSH keys for remote SSH and SCP access as the root user. A remote authenticated attacker can gain root access to all affected products.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

Datagate Mk2: 70044_update_05032019-482

Storm 24: 70044_update_05032019-482

Pixelator: 70044_update_05032019-482

E-Streamer Mk2: 70044_update_05032019-482

External links
https://www.mogozobo.com/?p=3476
https://www.us-cert.gov/ics/advisories/icsa-20-177-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in ENTTEC Lighting Controllers