CVE-2022-30622

Disclosure of information - the system allows you to view usernames and passwords without permissions, thus it will be possible to enter the system. Path access: http://api/sys_username_passwd.cmd - The server loads the request clearly by default. Disclosure of hard-coded credit information within the JS code sent to the customer within the Login.js file is a strong user (which is not documented) and also the password, which allow for super-user access. Username: chcadmin, Password: chcpassword.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.gov.il/en/Departments/faq/cve_advisories	Third Party Advisory
https://www.gov.il/en/Departments/faq/cve_advisories	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:chcnav:p5e_gnss_firmware::::::::
	cpe:2.3:o:chcnav:p5e_gnss_firmware:4.2:::::::*

cpe:2.3:h:chcnav:p5e_gnss:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:03

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.3~~	v2 : unknown v3 : 5.3
References	~~() https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory~~	() https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory

Information

Published : 2022-07-17 21:15

Updated : 2024-11-21 07:03

NVD link : CVE-2022-30622

Mitre link : CVE-2022-30622

CVE.ORG link : CVE-2022-30622

JSON object : View

Products Affected

chcnav

p5e_gnss_firmware
p5e_gnss

CWE

CWE-798

Use of Hard-coded Credentials

{"id": "CVE-2022-30622", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cna@cyber.gov.il", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.3}]}, "published": "2022-07-17T21:15:08.803", "references": [{"url": "https://www.gov.il/en/Departments/faq/cve_advisories", "tags": ["Third Party Advisory"], "source": "cna@cyber.gov.il"}, {"url": "https://www.gov.il/en/Departments/faq/cve_advisories", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "Disclosure of information - the system allows you to view usernames and passwords without permissions, thus it will be possible to enter the system. Path access: http://api/sys_username_passwd.cmd - The server loads the request clearly by default. Disclosure of hard-coded credit information within the JS code sent to the customer within the Login.js file is a strong user (which is not documented) and also the password, which allow for super-user access. Username: chcadmin, Password: chcpassword."}, {"lang": "es", "value": "Una revelaci\u00f3n de informaci\u00f3n: el sistema permite visualizar los nombres de usuario y las contrase\u00f1as sin permisos, por lo que ser\u00e1 posible entrar en el sistema. Acceso a la ruta: http://api/sys_username_passwd.cmd - El servidor carga la petici\u00f3n de forma clara por defecto. La divulgaci\u00f3n de la informaci\u00f3n de cr\u00e9dito embebida en el c\u00f3digo JS que es enviado al cliente dentro del archivo Login.js es un usuario fuerte (que no est\u00e1 documentado) y tambi\u00e9n la contrase\u00f1a, que permiten el acceso de super usuario. Nombre de usuario: chcadmin, Contrase\u00f1a: chcpassword"}], "lastModified": "2024-11-21T07:03:02.770", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:chcnav:p5e_gnss_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D517250C-921A-494E-9B38-6154732AA2E5", "versionEndIncluding": "4.1"}, {"criteria": "cpe:2.3:o:chcnav:p5e_gnss_firmware:4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B26293DB-77D5-4417-B72C-6EEDFE6151D5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:chcnav:p5e_gnss:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "56783F0F-85AA-4B6F-BC24-3F7659A86567"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cna@cyber.gov.il"}