PT-2023-15142 · Askey · Askey Rtf3505Vw-N1
Leoservalli
·
Published
2023-01-24
·
Updated
2023-02-06
·
CVE-2022-47040
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ASKEY router RTF3505VW-N1 version BR SV g000 R3505VMN1001 s32 7
Description
The issue allows attackers to escalate privileges by running the
tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80, specifically the "80" API endpoint.Recommendations
For ASKEY router RTF3505VW-N1 version BR SV g000 R3505VMN1001 s32 7, consider restricting access to the
/tmp directory and limiting the use of the tcpdump command until a patch is available. Additionally, restrict incoming traffic on port 80 to minimize the risk of exploitation.Exploit
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Askey Rtf3505Vw-N1