PT-2018-10719 · Dialogic · Dialogic Powermedia Xms

Published

2018-07-03

Updated

2020-08-24

CVE-2018-11635

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dialogic PowerMedia XMS versions prior to 3.5

Description The issue concerns the use of a hard-coded cryptographic key to protect cookie session data in the administrative console. This allows remote attackers to bypass authentication. The key is located in /var/www/xms/application/config/config.php.

Recommendations For versions prior to 3.5, update to a version that includes a fix for this issue, ensuring that hard-coded cryptographic keys are replaced with secure, dynamically generated keys. As a temporary workaround, consider restricting access to the administrative console to minimize the risk of exploitation.

Exploit

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2018-11635

Affected Products

Dialogic Powermedia Xms

PT-2018-10719 · Dialogic · Dialogic Powermedia Xms

CVE-2018-11635

Weakness Enumeration

Related Identifiers

Affected Products

References · 3