CVE-2019-12776

An issue was discovered on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They include a hard-coded SSH backdoor for remote SSH and SCP access as the root user. A command in the relocate and relocate_revB scripts copies the hardcoded key to the root user's authorized_keys file, enabling anyone with the associated private key to gain remote root access to all affected products.
References
Link Resource
https://www.mogozobo.com/?p=3476 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:enttec:datagate_mk2_firmware:70044:05032019-482:*:*:*:*:*:*
cpe:2.3:h:enttec:datagate_mk2:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:enttec:storm_24_firmware:70044:05032019-482:*:*:*:*:*:*
cpe:2.3:h:enttec:storm_24:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:enttec:pixelator_firmware:70044:05032019-482:*:*:*:*:*:*
cpe:2.3:h:enttec:pixelator:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:enttec:e-streamer_mk2_firmware:70044:05032019-482:*:*:*:*:*:*
cpe:2.3:h:enttec:e-streamer_mk2:-:*:*:*:*:*:*:*

Information

Published : 2019-06-07 09:29

Updated : 2019-06-10 11:50


NVD link : CVE-2019-12776

Mitre link : CVE-2019-12776


JSON object : View

CWE
CWE-798

Use of Hard-coded Credentials

Advertisement

dedicated server usa

Products Affected

enttec

  • datagate_mk2_firmware
  • storm_24_firmware
  • e-streamer_mk2
  • datagate_mk2
  • storm_24
  • pixelator
  • pixelator_firmware
  • e-streamer_mk2_firmware