CVE-2021-34565 - OpenCVE

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Pepperl-fuchs	Wha-gw-f2d2-0-as-z2-eth Wha-gw-f2d2-0-as-z2-eth.eip Wha-gw-f2d2-0-as-z2-eth.eip Firmware Wha-gw-f2d2-0-as-z2-eth Firmware

Configuration 1 [-]

AND

cpe:2.3:o:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth.eip_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth.eip:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://cert.vde.com/en-us/advisories/vde-2021-027

History

No history.

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2021-08-31T10:33:00.698044Z

Updated: 2024-09-17T03:22:29.106Z

Reserved: 2021-06-10T00:00:00

Link: CVE-2021-34565

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-08-31T11:15:07.707

Modified: 2022-09-29T15:24:56.240

Link: CVE-2021-34565

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "WHA-GW-F2D2-0-AS- Z2-ETH", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.0.7*", "status": "affected", "version": "3.0.7", "versionType": "custom"}, {"lessThanOrEqual": "3.0.9", "status": "affected", "version": "3.0.9", "versionType": "custom"}]}, {"product": "WHA-GW-F2D2-0-AS- Z2-ETH.EIP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.0.7*", "status": "affected", "version": "3.0.7", "versionType": "custom"}, {"lessThanOrEqual": "3.0.9", "status": "affected", "version": "3.0.9", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Pepperl+Fuchs reported this vulnerability. CERT@VDE coordinated."}], "datePublic": "2021-08-16T00:00:00", "descriptions": [{"lang": "en", "value": "In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-798", "description": "CWE-798 Use of Hard-coded Credentials", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-08-31T10:33:00", "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://cert.vde.com/en-us/advisories/vde-2021-027"}], "solutions": [{"lang": "en", "value": "No update available."}], "source": {"advisory": "VDE-2021-027", "discovery": "INTERNAL"}, "title": "In WirelessHART-Gateway versions 3.0.7 to 3.0.9 hard-coded credentials have been found", "workarounds": [{"lang": "en", "value": "An external protective measure is required.\n\n* Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n* Isolate affected products from the corporate network.\n* If remote access is required, use secure methods such as virtual private networks (VPNs)."}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "info@cert.vde.com", "DATE_PUBLIC": "2021-08-16T07:07:00.000Z", "ID": "CVE-2021-34565", "STATE": "PUBLIC", "TITLE": "In WirelessHART-Gateway versions 3.0.7 to 3.0.9 hard-coded credentials have been found"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "WHA-GW-F2D2-0-AS- Z2-ETH", "version": {"version_data": [{"version_affected": ">=", "version_name": "3.0.7", "version_value": "3.0.7"}, {"version_affected": "<=", "version_name": "3.0.9", "version_value": "3.0.9"}]}}, {"product_name": "WHA-GW-F2D2-0-AS- Z2-ETH.EIP", "version": {"version_data": [{"version_affected": ">=", "version_name": "3.0.7", "version_value": "3.0.7"}, {"version_affected": "<=", "version_name": "3.0.9", "version_value": "3.0.9"}]}}]}, "vendor_name": "Phoenix Contact"}]}}, "credit": [{"lang": "eng", "value": "Pepperl+Fuchs reported this vulnerability. CERT@VDE coordinated."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-798 Use of Hard-coded Credentials"}]}]}, "references": {"reference_data": [{"name": "https://cert.vde.com/en-us/advisories/vde-2021-027", "refsource": "CONFIRM", "url": "https://cert.vde.com/en-us/advisories/vde-2021-027"}]}, "solution": [{"lang": "en", "value": "No update available."}], "source": {"advisory": "VDE-2021-027", "discovery": "INTERNAL"}, "work_around": [{"lang": "en", "value": "An external protective measure is required.\n\n* Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n* Isolate affected products from the corporate network.\n* If remote access is required, use secure methods such as virtual private networks (VPNs)."}]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T00:12:50.412Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cert.vde.com/en-us/advisories/vde-2021-027"}]}]}, "cveMetadata": {"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "assignerShortName": "CERTVDE", "cveId": "CVE-2021-34565", "datePublished": "2021-08-31T10:33:00.698044Z", "dateReserved": "2021-06-10T00:00:00", "dateUpdated": "2024-09-17T03:22:29.106Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A36EA5D2-E34D-49CE-9FD4-39705E422EFC", "versionEndIncluding": "3.0.9", "versionStartIncluding": "3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth:-:*:*:*:*:*:*:*", "matchCriteriaId": "31ADD5AF-680A-4C79-B219-DAF256FD4D09", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth.eip_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AE16169E-EDC2-43B6-8509-3CDB48564583", "versionEndIncluding": "3.0.9", "versionStartIncluding": "3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:pepperl-fuchs:wha-gw-f2d2-0-as-z2-eth.eip:-:*:*:*:*:*:*:*", "matchCriteriaId": "6B743365-D2E7-4C47-B98B-CD5AFDC1B540", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials."}, {"lang": "es", "value": "En PEPPERL+FUCHS WirelessHART-Gateway versiones 3.0.7 hasta 3.0.9, los servicios SSH y telnet est\u00e1n activos con credenciales embebidas"}], "id": "CVE-2021-34565", "lastModified": "2022-09-29T15:24:56.240", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "info@cert.vde.com", "type": "Secondary"}]}, "published": "2021-08-31T11:15:07.707", "references": [{"source": "info@cert.vde.com", "tags": ["Third Party Advisory"], "url": "https://cert.vde.com/en-us/advisories/vde-2021-027"}], "sourceIdentifier": "info@cert.vde.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}], "source": "info@cert.vde.com", "type": "Primary"}]}