| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 9.8 | $25k-$100k | 0.00 |
Summary
A vulnerability identified as very critical has been detected in ABUS TVIP10050, TVIP10051, TVIP11050, TVIP11550, TVIP20050, TVIP20550, TVIP21050 and TVIP51550. The impacted element is an unknown function of the file /cgi-bin/mft/. This manipulation causes hard-coded password. The identification of this vulnerability is CVE-2018-17558. It is possible to initiate the attack remotely. There is no exploit available.
Details
A vulnerability has been found in ABUS TVIP10050, TVIP10051, TVIP11050, TVIP11550, TVIP20050, TVIP20550, TVIP21050 and TVIP51550 and classified as very critical. Affected by this vulnerability is some unknown functionality of the file /cgi-bin/mft/. The manipulation with an unknown input leads to a hard-coded password vulnerability. The CWE definition for the vulnerability is CWE-259. The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/ directory on ABUS TVIP TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, and TVIP51550 MG.1.6.03 cameras allow remote attackers to execute code as root.
The weakness was shared 10/27/2023. It is possible to read the advisory at sec.maride.cc. This vulnerability is known as CVE-2018-17558 since 09/26/2018. Technical details of the vulnerability are known, but there is no available exploit. The pricing for an exploit might be around USD $25k-$100k at the moment (estimation calculated on 09/12/2024). The attack technique deployed by this issue is T1078.001 according to MITRE ATT&CK.
We expect the 0-day to have been worth approximately $25k-$100k.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Be aware that VulDB is the high quality source for vulnerability data.
Product
Vendor
Name
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 9.8VulDB Meta Temp Score: 9.8
VulDB Base Score: 9.8
VulDB Temp Score: 9.8
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 9.8
NVD Vector: 🔍
CNA Base Score: 9.8
CNA Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Hard-coded passwordCWE: CWE-259 / CWE-255
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Timeline
09/26/2018 🔍10/27/2023 🔍
10/27/2023 🔍
09/12/2024 🔍
Sources
Advisory: sec.maride.ccStatus: Not defined
CVE: CVE-2018-17558 (🔍)
GCVE (CVE): GCVE-0-2018-17558
GCVE (VulDB): GCVE-100-243679
Entry
Created: 10/27/2023 07:38Updated: 09/12/2024 01:16
Changes: 10/27/2023 07:38 (37), 11/19/2023 02:10 (9), 09/12/2024 01:16 (25)
Complete: 🔍
Cache ID: 216::103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.