PT-2022-25428 · Unknown · Tacitine Firewall+2
Sreedev Kumar
·
Published
2022-09-23
·
Updated
2022-09-28
·
CVE-2022-40630
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Tacitine Firewall versions 19.1.1 through 22.20.1
EN6200-PRIME QUAD-35 versions 19.1.1 through 22.20.1
EN6200-PRIME QUAD-100 versions 19.1.1 through 22.20.1
Description
This issue is due to improper session management in the Tacitine Firewall web-based management interface. An unauthenticated remote attacker could exploit this by sending a specially crafted http request on the targeted device. Successful exploitation could allow an unauthenticated remote attacker to perform session fixation on the targeted device.
Recommendations
For Tacitine Firewall versions 19.1.1 through 22.20.1, update to a version outside of this range to resolve the issue.
For EN6200-PRIME QUAD-35 versions 19.1.1 through 22.20.1, update to a version outside of this range to resolve the issue.
For EN6200-PRIME QUAD-100 versions 19.1.1 through 22.20.1, update to a version outside of this range to resolve the issue.
As a temporary workaround, consider restricting access to the web-based management interface until a patch is available.
Fix
Session Fixation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
En6200-Prime Quad-100
En6200-Prime Quad-35
Tacitine Firewall