Main Vulnerability Database Vulnerabilities #VU67557

#VU67557 Missing Authentication for Critical Function in Unified Remote Server - CVE-2022-3229

Published: September 21, 2022 / Updated: September 22, 2022

Vulnerability identifier: #VU67557

Vulnerability risk: Critical

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red

CVE-ID: CVE-2022-3229

CWE-ID: CWE-306

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
Unified Remote Server

Software vendor:
Unified Intents AB

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to missing authentication for the "/web/#/settings/security" endpoint available by default on port 9510/TCP. A remote non-authenticated attacker can access the application settings remotely to disable authentication and gain unauthorized access to the system.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://www.rapid7.com/db/modules/exploit/windows/misc/unified_remote_rce

#VU67557 Missing Authentication for Critical Function in Unified Remote Server - CVE-2022-3229

Description

Remediation

External links

Please verify you're human