A vulnerability, which was classified as critical, was found in Vera Veralite 1.7.481. Affected is an unknown function of the file /etc/cmh/cmh.conf of the component OpenWRT Interface. The manipulation with an unknown input leads to a credentials management vulnerability. CWE is classifying the issue as CWE-255. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

An issue was discovered on Vera Veralite 1.7.481 devices. The device has an additional OpenWRT interface in addition to the standard web interface which allows the highest privileges a user can obtain on the device. This web interface uses root as the username and the password in the /etc/cmh/cmh.conf file which can be extracted by an attacker using a directory traversal attack, and then log in to the device with the highest privileges.

The weakness was disclosed 06/17/2019 as not defined mailinglist post (Bugtraq). The advisory is available at seclists.org. This vulnerability is traded as CVE-2017-9385 since 06/02/2017. The exploitability is told to be difficult. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1552 by the MITRE ATT&CK project.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The entries 136204, 136205, 136206 and 136207 are pretty similar.

Productinfo

Vendor

• Vera

Name

• Veralite

Version

• 1.7.481

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion