Description

Multiple W&T products of the Comserver Series use a small number space for allocating sessions ids. After login of an user an unathenticated remote attacker can brute force the users session id and get access to his account on the the device. As the user needs to log in for the attack to be successful a user interaction is required.

Related CPE's

o

wut

at-modem-emulator_firmware

Vulnerable

h

wut

at-modem-emulator

-

o

wut

com-server_\+\+_firmware

Vulnerable

h

wut

com-server_\+\+

-

o

wut

com-server_20ma_firmware

Vulnerable

h

wut

com-server_20ma

-

o

wut

com-server_highspeed_100basefx_firmware

Vulnerable

h

wut

com-server_highspeed_100basefx

-

o

wut

com-server_highspeed_100baselx_firmware

Vulnerable

h

wut

com-server_highspeed_100baselx

-

o

wut

com-server_highspeed_19\"_1port_firmware

Vulnerable

h

wut

com-server_highspeed_19\"_1port

-

o

wut

com-server_highspeed_19\"_4port_firmware

Vulnerable

h

wut

com-server_highspeed_19\"_4port

-

o

wut

com-server_highspeed_compact_firmware

Vulnerable

h

wut

com-server_highspeed_compact

-

o

wut

com-server_highspeed_industry_firmware

Vulnerable

h

wut

com-server_highspeed_industry

-

o

wut

com-server_highspeed_isolated_firmware

Vulnerable

h

wut

com-server_highspeed_isolated

-

o

wut

com-server_highspeed_oem_firmware

Vulnerable

h

wut

com-server_highspeed_oem

-

o

wut

com-server_highspeed_office_1port_firmware

Vulnerable

h

wut

com-server_highspeed_office_1port

-

o

wut

com-server_highspeed_office_4port_firmware

Vulnerable

h

wut

com-server_highspeed_office_4port

-

o

wut

com-server_highspeed_poe_firmware

Vulnerable

h

wut

com-server_highspeed_poe

-

o

wut

com-server_highspeed_lc_firmware

Vulnerable

h

wut

com-server_highspeed_lc

-

o

wut

com-server_highspeed_ul_firmware

Vulnerable

h

wut

com-server_highspeed_ul

-

o

wut

com-server_highspeed_poe_3x_isolated_firmware

Vulnerable

h

wut

com-server_highspeed_poe_3x_isolated

-

References

https://cert.vde.com/de/advisories/VDE-2022-043

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-330

[email protected]

Secondary
CWE-330

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-11-10T12:15:10.927

2 years ago

Last modified

2022-12-02T22:48:52.793

2 years ago