Details of VAR-201511-0046

ID

VAR-201511-0046

CVE

CVE-2015-6476

TITLE

plural Advantech EKI Vulnerability to gain access rights in device firmware

Trust: 0.8

sources: JVNDB: JVNDB-2015-005812

DESCRIPTION

Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with firmware before 1.98, and EKI-136x devices with firmware before 1.27 have hardcoded SSH keys, which makes it easier for remote attackers to obtain access via an SSH session. Supplementary information : CWE Vulnerability type by CWE-798: Use of Hard-coded Credentials ( Using hard-coded credentials ) Has been identified. http://cwe.mitre.org/data/definitions/798.htmlBy a third party SSH Access may be gained through a session. Advantech EKI-122x-BE, EKI-132x and EKI-136x are all serial device networking servers of Advantech, Inc., which provide various redundant configurations and multiple channels for remote monitoring of serial devices via Ethernet communication protocol. Access configuration. Security vulnerabilities exist in several Advantech products. Multiple Advantech EKI products are prone to a security-bypass vulnerability

Trust: 2.7

sources: NVD: CVE-2015-6476 // JVNDB: JVNDB-2015-005812 // CNVD: CNVD-2015-07475 // BID: 77498 // IVD: 7c6174c4-2351-11e6-abef-000c29c66e3d // VULHUB: VHN-84437

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.2

sources: IVD: 7c6174c4-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07475

AFFECTED PRODUCTS

vendor:	advantech	model:	eki-1321 series	scope:	lte	version:	1.96	Trust: 1.0
vendor:	advantech	model:	eki-122x series	scope:	lte	version:	1.49	Trust: 1.0
vendor:	advantech	model:	eki-1361 series	scope:	lte	version:	1.17	Trust: 1.0
vendor:	advantech	model:	eki-1322 series	scope:	lte	version:	1.96	Trust: 1.0
vendor:	advantech	model:	eki-1362 series	scope:	lte	version:	1.17	Trust: 1.0
vendor:	advantech	model:	eki-1221	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1221d	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1222	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1222d	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1224	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-122x series	scope:	lt	version:	1.65	Trust: 0.8
vendor:	advantech	model:	eki-1321	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1321 series	scope:	lt	version:	1.98	Trust: 0.8
vendor:	advantech	model:	eki-1322	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1322 series	scope:	lt	version:	1.98	Trust: 0.8
vendor:	advantech	model:	eki-1361	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1361 series	scope:	lt	version:	1.27	Trust: 0.8
vendor:	advantech	model:	eki-1362	scope:	-	version:	-	Trust: 0.8
vendor:	advantech	model:	eki-1362 series	scope:	lt	version:	1.27	Trust: 0.8
vendor:	advantech	model:	eki-122x-be	scope:	lt	version:	1.65	Trust: 0.6
vendor:	advantech	model:	eki-132x	scope:	lt	version:	1.98	Trust: 0.6
vendor:	advantech	model:	eki-136x	scope:	lt	version:	1.27	Trust: 0.6
vendor:	advantech	model:	eki-1361 series	scope:	eq	version:	1.17	Trust: 0.6
vendor:	advantech	model:	eki-122x series	scope:	eq	version:	1.49	Trust: 0.6
vendor:	advantech	model:	eki-1321 series	scope:	eq	version:	1.96	Trust: 0.6
vendor:	advantech	model:	eki-1362 series	scope:	eq	version:	1.17	Trust: 0.6
vendor:	advantech	model:	eki-1322 series	scope:	eq	version:	1.96	Trust: 0.6
vendor:	advantech	model:	eki-1360	scope:	eq	version:	0	Trust: 0.3
vendor:	advantech	model:	eki-1320	scope:	eq	version:	0	Trust: 0.3
vendor:	advantech	model:	eki-1220-be	scope:	eq	version:	0	Trust: 0.3
vendor:	advantech	model:	eki-1360	scope:	ne	version:	1.27	Trust: 0.3
vendor:	advantech	model:	eki-1320	scope:	ne	version:	1.98	Trust: 0.3
vendor:	advantech	model:	eki-1220-be	scope:	ne	version:	1.65	Trust: 0.3
vendor:	eki 1321 series	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	eki 1322 series	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	eki 1361 series	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	eki 1362 series	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	eki 122x series	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 7c6174c4-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07475 // BID: 77498 // JVNDB: JVNDB-2015-005812 // CNNVD: CNNVD-201511-113 // NVD: CVE-2015-6476

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-6476
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-6476
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2015-07475
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201511-113
value:	CRITICAL
Trust: 0.6
IVD:	7c6174c4-2351-11e6-abef-000c29c66e3d
value:	CRITICAL
Trust: 0.2
VULHUB:	VHN-84437
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2015-6476
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2015-07475
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	7c6174c4-2351-11e6-abef-000c29c66e3d
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-84437
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: IVD: 7c6174c4-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07475 // VULHUB: VHN-84437 // JVNDB: JVNDB-2015-005812 // CNNVD: CNNVD-201511-113 // NVD: CVE-2015-6476

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	CWE-Other	Trust: 0.8

sources: JVNDB: JVNDB-2015-005812 // NVD: CVE-2015-6476

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201511-113

TYPE

Design Error

Trust: 0.3

sources: BID: 77498

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-005812

PATCH

title:	EKI-136*	url:	http://support.advantech.com.tw/Support/SearchResult.aspx?keyword=EKI-136*&searchtabs=Firmware	Trust: 0.8
title:	EKI-132*	url:	http://support.advantech.com.tw/Support/SearchResult.aspx?keyword=EKI-132*&searchtabs=Firmware	Trust: 0.8
title:	EKI-122*	url:	http://support.advantech.com.tw/Support/SearchResult.aspx?keyword=EKI-122*&searchtabs=Firmware	Trust: 0.8
title:	Patches for several Advantech product SSH key vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/66571	Trust: 0.6
title:	Multiple Advantech Product security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=58608	Trust: 0.6

sources: CNVD: CNVD-2015-07475 // JVNDB: JVNDB-2015-005812 // CNNVD: CNNVD-201511-113

EXTERNAL IDS

db:	NVD	id:	CVE-2015-6476	Trust: 3.6
db:	ICS CERT	id:	ICSA-15-309-01	Trust: 3.4
db:	CNNVD	id:	CNNVD-201511-113	Trust: 0.9
db:	CNVD	id:	CNVD-2015-07475	Trust: 0.8
db:	JVNDB	id:	JVNDB-2015-005812	Trust: 0.8
db:	BID	id:	77498	Trust: 0.4
db:	IVD	id:	7C6174C4-2351-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	SEEBUG	id:	SSVID-89764	Trust: 0.1
db:	VULHUB	id:	VHN-84437	Trust: 0.1

sources: IVD: 7c6174c4-2351-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-07475 // VULHUB: VHN-84437 // BID: 77498 // JVNDB: JVNDB-2015-005812 // CNNVD: CNNVD-201511-113 // NVD: CVE-2015-6476

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-15-309-01	Trust: 3.4
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6476	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6476	Trust: 0.8
url:	http://www.advantech.com	Trust: 0.3

sources: CNVD: CNVD-2015-07475 // VULHUB: VHN-84437 // BID: 77498 // JVNDB: JVNDB-2015-005812 // CNNVD: CNNVD-201511-113 // NVD: CVE-2015-6476

CREDITS

Neil Smith

Trust: 0.3

sources: BID: 77498

SOURCES

db:	IVD	id:	7c6174c4-2351-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2015-07475
db:	VULHUB	id:	VHN-84437
db:	BID	id:	77498
db:	JVNDB	id:	JVNDB-2015-005812
db:	CNNVD	id:	CNNVD-201511-113
db:	NVD	id:	CVE-2015-6476

LAST UPDATE DATE

2025-04-13T23:09:44.756000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2015-07475	date:	2015-11-12T00:00:00
db:	VULHUB	id:	VHN-84437	date:	2015-11-09T00:00:00
db:	BID	id:	77498	date:	2015-11-05T00:00:00
db:	JVNDB	id:	JVNDB-2015-005812	date:	2015-11-10T00:00:00
db:	CNNVD	id:	CNNVD-201511-113	date:	2015-11-09T00:00:00
db:	NVD	id:	CVE-2015-6476	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	IVD	id:	7c6174c4-2351-11e6-abef-000c29c66e3d	date:	2015-11-12T00:00:00
db:	CNVD	id:	CNVD-2015-07475	date:	2015-11-12T00:00:00
db:	VULHUB	id:	VHN-84437	date:	2015-11-07T00:00:00
db:	BID	id:	77498	date:	2015-11-05T00:00:00
db:	JVNDB	id:	JVNDB-2015-005812	date:	2015-11-10T00:00:00
db:	CNNVD	id:	CNNVD-201511-113	date:	2015-11-09T00:00:00
db:	NVD	id:	CVE-2015-6476	date:	2015-11-07T03:59:00.127