CVE-2019-12776

Name of the Vulnerable Software and Affected Versions ENTTEC Datagate MK2 version 70044 update 05032019-482 ENTTEC Storm 24 version 70044 update 05032019-482 ENTTEC Pixelator version 70044 update 05032019-482 ENTTEC E-Streamer MK2 version 70044 update 05032019-482

Description An issue was discovered in the ENTTEC devices, which include a hard-coded SSH backdoor for remote SSH and SCP access as the root user. This backdoor is enabled by a command in the relocate and relocate revB scripts, which copies the hardcoded key to the root user's authorized keys file. As a result, anyone with the associated private key can gain remote root access to all affected products.

Recommendations For ENTTEC Datagate MK2 version 70044 update 05032019-482, consider disabling the SSH access until a patch is available. For ENTTEC Storm 24 version 70044 update 05032019-482, restrict access to the relocate and relocate revB scripts to minimize the risk of exploitation. For ENTTEC Pixelator version 70044 update 05032019-482, remove the hardcoded key from the root user's authorized keys file as a temporary workaround. For ENTTEC E-Streamer MK2 version 70044 update 05032019-482, avoid using the SSH and SCP access until the issue is resolved.