CVE-2022-36159

Name of the Vulnerable Software and Affected Versions Contec FXA3200 versions 1.13 and under

Description The issue concerns a hard-coded hash password for the root user stored in the /etc/shadow component. This password is weak and can be cracked in a few minutes. Once the password is obtained, a malicious actor can access the Wireless LAN Manager interface, open the telnet port, and then sniff traffic or inject malware.

Recommendations For Contec FXA3200 versions 1.13 and under, consider changing the hard-coded hash password for the root user to a stronger one and restrict access to the Wireless LAN Manager interface until a patch is available. As a temporary workaround, disable the telnet port to minimize the risk of exploitation.