CVE-2018-12257

Name of the Vulnerable Software and Affected Versions Momentum Axel 720P version 5.1.8

Description An issue allows authenticated custom firmware upgrade via DNS hijacking. An authenticated root user with CLI access can remotely upgrade firmware to a custom image due to a lack of SSL validation. This is achieved by changing the nameservers in /etc/resolv.conf to the attacker's server and serving the expected HTTPS response containing new firmware for the device to download.

Recommendations For Momentum Axel 720P version 5.1.8, as a temporary workaround, consider restricting CLI access and modifying /etc/resolv.conf to prevent DNS hijacking until a patch is available. Additionally, restrict access to the firmware upgrade mechanism to minimize the risk of exploitation.