MidnightBSD

Advisories for fatpipeinc

CVE-2021-27855 MEDIUM

FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows a remote, authenticated attacker with read-only privileges to grant themselves administrative privileges. Older versions of FatPipe software may also be vulnerable. The FatPipe advisory identifier for this vulnerability is FPSA001.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cret@cert.org 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,NVD-CWE-Other,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0
CVE-2021-27856 HIGH

FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 includes an account named "cmuser" that has administrative privileges and no password. Older versions of FatPipe software may also be vulnerable. The FatPipe advisory identifier for this vulnerability is FPSA002.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cret@cert.org 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0
CVE-2021-27857 MEDIUM

A missing authorization vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows a remote, unauthenticated attacker to download a configuration archive. The attacker needs to know or correctly guess the hostname of the target system since the hostname is used as part of the configuration archive file name. Older versions of FatPipe software may also be vulnerable. The FatPipe advisory identifier for this vulnerability is FPSA003.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cret@cert.org 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,CWE-862,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0
CVE-2021-27858 MEDIUM

A missing authorization vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows a remote attacker to access at least the URL "/fpui/jsp/index.jsp" leading to unknown impact, presumably some violation of confidentiality. Older versions of FatPipe software may also be vulnerable. The FatPipe advisory identifier for this vulnerability is FPSA004.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cret@cert.org 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,CWE-862,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0
CVE-2021-27859 MEDIUM

A missing authorization vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows an authenticated, remote attacker with read-only privileges to create an account with administrative privileges. Older versions of FatPipe software may also be vulnerable. This does not appear to be a CSRF vulnerability. The FatPipe advisory identifier for this vulnerability is FPSA005.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
cret@cert.org 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,CWE-862,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0
CVE-2021-27860 HIGH

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9
cret@cert.org 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-434,CWE-434,

Products Affected

Vendor Product Version
fatpipeinc ipvpn_firmware 10.1.2
fatpipeinc mpvpn_firmware 7.1.2
fatpipeinc mpvpn_firmware 10.2.2
fatpipeinc ipvpn_firmware 6.1.2
fatpipeinc ipvpn_firmware 9.1.2
fatpipeinc warp_firmware 7.1.2
fatpipeinc warp_firmware 10.1.2
fatpipeinc ipvpn_firmware 7.1.2
fatpipeinc warp_firmware 10.2.2
fatpipeinc mpvpn_firmware 5.2.0
fatpipeinc mpvpn_firmware 6.1.2
fatpipeinc warp_firmware 9.1.2
fatpipeinc warp_firmware 6.1.2
fatpipeinc mpvpn_firmware 9.1.2
fatpipeinc ipvpn_firmware 10.2.2
fatpipeinc warp_firmware 5.2.0
fatpipeinc mpvpn_firmware 10.1.2
fatpipeinc ipvpn_firmware 5.2.0