Sign-up

ID

VAR-201806-0709


CVE

CVE-2018-12257


TITLE

Momentum Axel 720P Vulnerabilities related to certificate validation

Trust: 0.8

sources: JVNDB: JVNDB-2018-006339

DESCRIPTION

An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade firmware to a custom image due to lack of SSL validation by changing the nameservers in /etc/resolv.conf to the attacker's server, and serving the expected HTTPS response containing new firmware for the device to download. The MomentumAxel720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in the MomentumAxel720P version 5.1.8, which is due to a lack of verification of SSL by the program

Trust: 2.25

sources: NVD: CVE-2018-12257 // JVNDB: JVNDB-2018-006339 // CNVD: CNVD-2018-22563 // VULHUB: VHN-122198

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-22563

AFFECTED PRODUCTS

vendor:apollotechnologiesincmodel:momentum axel 720pscope:eqversion:5.1.8

Trust: 2.2

vendor:apollo tech usamodel:momentum axel 720pscope:eqversion:5.1.8

Trust: 0.8

sources: CNVD: CNVD-2018-22563 // JVNDB: JVNDB-2018-006339 // CNNVD: CNNVD-201806-718 // NVD: CVE-2018-12257

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-12257
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-12257
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2018-22563
value: LOW

Trust: 0.6

CNNVD: CNNVD-201806-718
value: LOW

Trust: 0.6

VULHUB: VHN-122198
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2018-12257
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-22563
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-122198
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-12257
baseSeverity: MEDIUM
baseScore: 4.4
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 0.8
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2018-22563 // VULHUB: VHN-122198 // JVNDB: JVNDB-2018-006339 // CNNVD: CNNVD-201806-718 // NVD: CVE-2018-12257

PROBLEMTYPE DATA

problemtype:CWE-295

Trust: 1.9

sources: VULHUB: VHN-122198 // JVNDB: JVNDB-2018-006339 // NVD: CVE-2018-12257

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201806-718

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201806-718

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-006339

PATCH
title:Top Pageurl:https://momentumcam.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2018-006339

EXTERNAL IDS
db:NVDid:CVE-2018-12257
Trust: 3.1
db:JVNDBid:JVNDB-2018-006339
Trust: 0.8
db:CNNVDid:CNNVD-201806-718
Trust: 0.7
db:CNVDid:CNVD-2018-22563
Trust: 0.6
db:VULHUBid:VHN-122198
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2018-22563 // 
            
            
            
            VULHUB: VHN-122198 // 
            
            
            
            JVNDB: JVNDB-2018-006339 // 
            
            
            
            CNNVD: CNNVD-201806-718 // 
            
            
            
            NVD: CVE-2018-12257

REFERENCES
url:https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf
Trust: 2.5
url:https://nvd.nist.gov/vuln/detail/cve-2018-12257
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-12257
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2018-22563 // 
            
            
            
            VULHUB: VHN-122198 // 
            
            
            
            JVNDB: JVNDB-2018-006339 // 
            
            
            
            CNNVD: CNNVD-201806-718 // 
            
            
            
            NVD: CVE-2018-12257

SOURCES
db:CNVDid:CNVD-2018-22563
db:VULHUBid:VHN-122198
db:JVNDBid:JVNDB-2018-006339
db:CNNVDid:CNNVD-201806-718
db:NVDid:CVE-2018-12257

LAST UPDATE DATE
2024-11-23T22:30:22.128000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2018-22563date:2018-11-06T00:00:00
db:VULHUBid:VHN-122198date:2018-08-02T00:00:00
db:JVNDBid:JVNDB-2018-006339date:2018-08-17T00:00:00
db:CNNVDid:CNNVD-201806-718date:2018-06-13T00:00:00
db:NVDid:CVE-2018-12257date:2024-11-21T03:44:52.353

SOURCES RELEASE DATE
db:CNVDid:CNVD-2018-22563date:2018-11-06T00:00:00
db:VULHUBid:VHN-122198date:2018-06-12T00:00:00
db:JVNDBid:JVNDB-2018-006339date:2018-08-17T00:00:00
db:CNNVDid:CNNVD-201806-718date:2018-06-13T00:00:00
db:NVDid:CVE-2018-12257date:2018-06-12T18:29:00.537