CVE-2022-36159

Contec FXA3200 version 1.13 and under were discovered to contain a hard coded hash password for root stored in the component /etc/shadow. As the password strength is weak, it can be cracked in few minutes. Through this credential, a malicious actor can access the Wireless LAN Manager interface and open the telnet port then sniff the traffic or inject any malware.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
CISA-ADPADP
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
VendorProductVersion
contecfxa3000_firmware
𝑥
≤ 1.13.00
contecfxa3020_firmware
𝑥
≤ 1.13.00
contecfxa3200_firmware
𝑥
≤ 1.13.00
contecfxa2000_firmware
𝑥
< 1.39.00
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4
https://jvn.jp/en/vu/JVNVU98305100/
https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo
https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section
https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4
https://jvn.jp/en/vu/JVNVU98305100/
https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo
https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section