CVE-2019-20457

{"id": "CVE-2019-20457", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2024-11-07T18:15:15.083", "references": [{"url": "https://global.brother", "source": "cve@mitre.org"}, {"url": "https://seclists.org/fulldisclosure/2024/Jul/14", "source": "cve@mitre.org"}, {"url": "https://support.brother.com/g/s/security/en/index.html", "source": "cve@mitre.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-276"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-interface password hash can be retrieved without authentication, because the response header of any failed login attempt returns an incomplete authorization cookie. The value of the authorization cookie is the MD5 hash of the password in hexadecimal. An attacker can easily derive the true MD5 hash from this, and use offline cracking attacks to obtain administrative access to the device."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en los dispositivos Brother MFC-J491DW C1806180757. El hash de la contrase\u00f1a de la interfaz web de la impresora se puede recuperar sin autenticaci\u00f3n, porque el encabezado de respuesta de cualquier intento de inicio de sesi\u00f3n fallido devuelve una cookie de autorizaci\u00f3n incompleta. El valor de la cookie de autorizaci\u00f3n es el hash MD5 de la contrase\u00f1a en hexadecimal. Un atacante puede derivar f\u00e1cilmente el hash MD5 verdadero a partir de esto y utilizar ataques de descifrado fuera de l\u00ednea para obtener acceso administrativo al dispositivo."}], "lastModified": "2024-11-08T19:01:03.880", "sourceIdentifier": "cve@mitre.org"}