CVE-2020-25749 - OpenCVE

The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) could allow an remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. The Telnet service cannot be disabled and this password cannot be changed via standard functionality.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rubetek	Rv-3406 Rv-3406 Firmware Rv-3409 Rv-3409 Firmware Rv-3411 Rv-3411 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:rubetek:rv-3406_firmware:339:::::::*
	cpe:2.3:o:rubetek:rv-3406_firmware:342:::::::*

cpe:2.3:h:rubetek:rv-3406:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:rubetek:rv-3409_firmware:339:::::::*
	cpe:2.3:o:rubetek:rv-3409_firmware:342:::::::*

cpe:2.3:h:rubetek:rv-3409:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:rubetek:rv-3411_firmware:339:::::::*
	cpe:2.3:o:rubetek:rv-3411_firmware:342:::::::*

cpe:2.3:h:rubetek:rv-3411:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/jet-pentest/CVE-2020-25749

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-09-25T03:18:28

Updated: 2024-08-04T15:40:36.961Z

Reserved: 2020-09-18T00:00:00

Link: CVE-2020-25749

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-09-25T04:23:05.167

Modified: 2020-10-08T16:27:07.877

Link: CVE-2020-25749

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) could allow an remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. The Telnet service cannot be disabled and this password cannot be changed via standard functionality."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-09-25T03:18:28", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/jet-pentest/CVE-2020-25749"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2020-25749", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) could allow an remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. The Telnet service cannot be disabled and this password cannot be changed via standard functionality."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/jet-pentest/CVE-2020-25749", "refsource": "MISC", "url": "https://github.com/jet-pentest/CVE-2020-25749"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T15:40:36.961Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/jet-pentest/CVE-2020-25749"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-25749", "datePublished": "2020-09-25T03:18:28", "dateReserved": "2020-09-18T00:00:00", "dateUpdated": "2024-08-04T15:40:36.961Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rubetek:rv-3406_firmware:339:*:*:*:*:*:*:*", "matchCriteriaId": "57AF1900-5D42-45B9-9906-B1EBC933A064", "vulnerable": true}, {"criteria": "cpe:2.3:o:rubetek:rv-3406_firmware:342:*:*:*:*:*:*:*", "matchCriteriaId": "72F51EDA-EA7A-4E58-A071-A0D6F3AEC379", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rubetek:rv-3406:-:*:*:*:*:*:*:*", "matchCriteriaId": "D0C29138-1CBA-4677-B494-AA5278632606", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rubetek:rv-3409_firmware:339:*:*:*:*:*:*:*", "matchCriteriaId": "B2BD4E56-46E1-4985-A46F-C9B4A374A17F", "vulnerable": true}, {"criteria": "cpe:2.3:o:rubetek:rv-3409_firmware:342:*:*:*:*:*:*:*", "matchCriteriaId": "EE539B49-BF73-4411-855D-69E02E6AD917", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rubetek:rv-3409:-:*:*:*:*:*:*:*", "matchCriteriaId": "93B04FD1-8EEF-4DDC-83A9-9F5390378D28", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:rubetek:rv-3411_firmware:339:*:*:*:*:*:*:*", "matchCriteriaId": "183C8C01-1F30-40F5-BD9F-6D217EB1CD42", "vulnerable": true}, {"criteria": "cpe:2.3:o:rubetek:rv-3411_firmware:342:*:*:*:*:*:*:*", "matchCriteriaId": "C9ECA3AF-D4F0-4F8B-854C-0C63BB090E44", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rubetek:rv-3411:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D54B518-140F-4933-A1C8-45A0A7B3F167", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) could allow an remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. The Telnet service cannot be disabled and this password cannot be changed via standard functionality."}, {"lang": "es", "value": "El servicio Telnet de las c\u00e1maras RV-3406, RV-3409 y RV-3411 de Rubetek (versiones de firmware v342, v339), podr\u00eda permitir a un atacante remoto tomar el control total del dispositivo con una cuenta muy privilegiada. La vulnerabilidad se presenta porque una cuenta del sistema posee una contrase\u00f1a predeterminada y est\u00e1tica. El servicio Telnet no puede ser desactivado y esta contrase\u00f1a no puede ser cambiada por medio de la funcionalidad est\u00e1ndar"}], "id": "CVE-2020-25749", "lastModified": "2020-10-08T16:27:07.877", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-09-25T04:23:05.167", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/jet-pentest/CVE-2020-25749"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}], "source": "nvd@nist.gov", "type": "Primary"}]}