MidnightBSD

Advisories for korenix

CVE-2017-14021 HIGH

A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and JetNet6710G version 1.1. An attacker may gain access to hard-coded certificates and private keys allowing the attacker to perform man-in-the-middle attacks.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-321,CWE-798,

Products Affected

Vendor Product Version
korenix jetnet6710g-hvdc_firmware 11e
korenix jetnet5428g-2g-2fx_firmware 1.4
korenix jetnet6710g_firmware 1.1
korenix jetnet5018g_firmware 1.4
korenix jetnet5310g_firmware 1.4a
korenix jetnet5628g-r_firmware 1.4
korenix jetnet5728g-24p_firmware 1.4
korenix jetnet5628g_firmware 1.4
korenix jetnet5828g_firmware 1.1d
CVE-2017-14027 HIGH

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and JetNet6710G version 1.1. The software uses undocumented hard-coded credentials that may allow an attacker to gain remote access.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,CWE-798,

Products Affected

Vendor Product Version
korenix jetnet6710g-hvdc_firmware 11e
korenix jetnet5428g-2g-2fx_firmware 1.4
korenix jetnet6710g_firmware 1.1
korenix jetnet5018g_firmware 1.4
korenix jetnet5310g_firmware 1.4a
korenix jetnet5628g-r_firmware 1.4
korenix jetnet5728g-24p_firmware 1.4
korenix jetnet5628g_firmware 1.4
korenix jetnet5828g_firmware 1.1d
CVE-2019-9725 MEDIUM

The Web manager (aka Commander) on Korenix JetPort 5601 and 5601f devices has Persistent XSS via the Port Alias field under Serial Setting.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
korenix jetport_web_manager -
korenix jetport_5601_firmware -
korenix jetport_5601f_firmware -
CVE-2020-12501 HIGH

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) use undocumented accounts.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
info@cert.vde.com 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,CWE-798,

Products Affected

Vendor Product Version
korenix jetwave_2212x_firmware -
korenix jetnet4510_firmware -
korenix jetnet5810g_firmware -
pepperl-fuchs es8510_firmware *
korenix jetwave_2212s_firmware -
pepperl-fuchs es9528_firmware *
pepperl-fuchs es7506_firmware *
pepperl-fuchs es8508f_firmware *
korenix jetwave_2311_firmware -
pepperl-fuchs es8508_firmware *
korenix jetnet4706f_firmware -
pepperl-fuchs es8510-xte_firmware *
korenix jetnet5010_firmware -
pepperl-fuchs es9528-xt_firmware *
pepperl-fuchs es9528-xtv2_firmware *
korenix jetnet6095_firmware -
pepperl-fuchs es7510_firmware *
pepperl-fuchs es7528_firmware *
pepperl-fuchs es8509-xt_firmware *
pepperl-fuchs es7510-xt_firmware *
korenix jetnet4706_firmware -
korenix jetwave_3220_firmware -
korenix jetwave_2212g_firmware -
korenix jetnet5428g-20sfp_firmware -
pepperl-fuchs es8510-xt_firmware *
korenix jetnet5310_firmware -
CVE-2020-12502 MEDIUM

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) and ICRL-M-8RJ45/4SFP-G-DIN, ICRL-M-16RJ45/4CP-G-DIN FW 1.2.3 and below is prone to unauthenticated device administration.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9
info@cert.vde.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,CWE-352,

Products Affected

Vendor Product Version
pepperl-fuchs es9528-xt_firmware *
pepperl-fuchs es9528-xtv2_firmware *
pepperl-fuchs icrl-m-8rj45/4sfp-g-din_firmware *
pepperl-fuchs es8510_firmware *
pepperl-fuchs icrl-m-16rj45/4cp-g-din_firmware *
pepperl-fuchs es9528_firmware *
pepperl-fuchs es7506_firmware *
pepperl-fuchs es8508f_firmware *
korenix jetnet_5810g_firmware -
korenix jetnet_4706f_firmware -
pepperl-fuchs es7510_firmware *
pepperl-fuchs es8508_firmware *
pepperl-fuchs es7528_firmware *
korenix jetnet_6095_firmware -
pepperl-fuchs es8509-xt_firmware *
korenix jetnet_5010_firmware -
korenix jetnet_4510_firmware -
pepperl-fuchs es7510-xt_firmware *
korenix jetnet_5310_firmware -
korenix jetnet_5428g-20sfp_firmware -
korenix jetnet_4706_firmware -
pepperl-fuchs es8510-xt_firmware *
pepperl-fuchs es8510-xte_firmware *
CVE-2020-12503 MEDIUM

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) and ICRL-M-8RJ45/4SFP-G-DIN, ICRL-M-16RJ45/4CP-G-DIN FW 1.2.3 and below is prone to multiple authenticated command injections.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
info@cert.vde.com 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,CWE-863,

Products Affected

Vendor Product Version
korenix jetwave_2212x_firmware -
pepperl-fuchs icrl-m-8rj45/4sfp-g-din_firmware *
pepperl-fuchs es8510_firmware *
korenix jetwave_2212s_firmware -
pepperl-fuchs es9528_firmware *
pepperl-fuchs es7506_firmware *
pepperl-fuchs es8508f_firmware *
korenix jetnet_4706f_firmware -
korenix jetwave_2311_firmware -
pepperl-fuchs es8508_firmware *
korenix jetnet_6095_firmware -
korenix jetnet_5010_firmware -
korenix jetnet_4510_firmware -
korenix jetnet_5428g-20sfp_firmware -
pepperl-fuchs es8510-xte_firmware *
pepperl-fuchs es9528-xt_firmware *
pepperl-fuchs icrl-m-8rj45/4sfp-g-din_firmware -
pepperl-fuchs es9528-xtv2_firmware *
pepperl-fuchs icrl-m-16rj45/4cp-g-din_firmware *
korenix jetnet_5810g_firmware -
pepperl-fuchs es7510_firmware *
pepperl-fuchs es7528_firmware *
pepperl-fuchs es8509-xt_firmware *
pepperl-fuchs es7510-xt_firmware *
korenix jetnet_5310_firmware -
korenix jetwave_3220_firmware -
korenix jetwave_2212g_firmware -
korenix jetnet_4706_firmware -
pepperl-fuchs es8510-xt_firmware *
pepperl-fuchs icrl-m-16rj45/4cp-g-din_firmware -
CVE-2020-12504 HIGH

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) and ICRL-M-8RJ45/4SFP-G-DIN, ICRL-M-16RJ45/4CP-G-DIN FW 1.2.3 and below has an active TFTP-Service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
info@cert.vde.com 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-912,NVD-CWE-Other,

Products Affected

Vendor Product Version
korenix jetwave_5310_firmware 1.5
korenix jetwave_5010_firmware 3.1a
westermo pmi-110-f2g_firmware 1.5
korenix jetwave_3420_firmware 1.1.3t
pepperl-fuchs icrl-m-8rj45/4sfp-g-din_firmware *
korenix jetwave_5810g_firmware 1.1
pepperl-fuchs es8510_firmware *
pepperl-fuchs es9528_firmware *
korenix jetwave_4706_firmware 2.3b
pepperl-fuchs es7506_firmware *
pepperl-fuchs es8508f_firmware *
pepperl-fuchs es8508_firmware *
korenix jetwave_2311_firmware 1.2
korenix jetwave_3220_firmware 1.2
pepperl-fuchs es8510-xte_firmware *
pepperl-fuchs es9528-xt_firmware *
korenix jetwave_2212g_firmware 1.4
pepperl-fuchs es9528-xtv2_firmware *
korenix jetwave_4706f_firmware 2.3b
korenix jetwave_5428g-20sfp_firmware 1.0
pepperl-fuchs icrl-m-16rj45/4cp-g-din_firmware *
pepperl-fuchs es7510_firmware *
pepperl-fuchs es7528_firmware *
pepperl-fuchs es8509-xt_firmware *
pepperl-fuchs es7510-xt_firmware *
korenix jetwave_2212x_firmware 1.5
korenix jetwave_4510_firmware 3.0b
korenix jetwave_2212s_firmware 1.5
pepperl-fuchs es8510-xt_firmware *
CVE-2021-39280 HIGH

Certain Korenix JetWave devices allow authenticated users to execute arbitrary code as root via /syscmd.asp. This affects 2212X before 1.9.1, 2212S before 1.9.1, 2212G before 1.8, 3220 V3 before 1.5.1, 3420 V3 before 1.5.1, and 2311 through 2022-01-31.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
korenix jetwave_2212g_firmware *
korenix jetwave_2311_firmware *
korenix jetwave_3420_firmware *
korenix jetwave_2212s_firmware *
korenix jetwave_3220_firmware *
korenix jetwave_2212x_firmware *
CVE-2023-23294

Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection. An attacker can modify the file_name parameter to execute commands as root.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
korenix jetwave_2111_firmware *
korenix jetwave_2460_firmware *
korenix jetwave_2212s_firmware 1.3.0
korenix jetwave_3220_v3__firmware *
korenix jetwave_2111l_firmware *
korenix jetwave_2411l_firmware *
korenix jetwave_2414_firmware *
korenix jetwave_2212g_firmware 1.3.t
korenix jetwave_4221hp-e__firmware *
korenix jetwave_2211c_firmware *
korenix jetwave_3420_v3__firmware *
korenix jetwave_2212x_firmware 1.3.0
korenix jetwave_2411_firmware *
korenix jetwave_2114_firmware *
korenix jetwave_2424_firmware *
CVE-2023-23295

Korenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection via /goform/formSysCmd. An attacker an modify the sysCmd parameter in order to execute commands as root.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
korenix jetwave_2111_firmware *
korenix jetwave_2460_firmware *
korenix jetwave_2212s_firmware 1.3.0
korenix jetwave_3220_v3__firmware *
korenix jetwave_2111l_firmware *
korenix jetwave_2411l_firmware *
korenix jetwave_2414_firmware *
korenix jetwave_2212g_firmware 1.3.t
korenix jetwave_4221hp-e__firmware *
korenix jetwave_2211c_firmware *
korenix jetwave_3420_v3__firmware *
korenix jetwave_2212x_firmware 1.3.0
korenix jetwave_2411_firmware *
korenix jetwave_2114_firmware *
korenix jetwave_2424_firmware *
CVE-2023-23296

Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vulnerable to Denial of Service via /goform/formDefault.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
korenix jetwave_2111_firmware *
korenix jetwave_2460_firmware *
korenix jetwave_2212s_firmware 1.3.0
korenix jetwave_3220_v3__firmware *
korenix jetwave_2111l_firmware *
korenix jetwave_2411l_firmware *
korenix jetwave_2414_firmware *
korenix jetwave_2212g_firmware 1.3.t
korenix jetwave_4221hp-e__firmware *
korenix jetwave_2211c_firmware *
korenix jetwave_3420_v3__firmware *
korenix jetwave_2212x_firmware 1.3.0
korenix jetwave_2411_firmware *
korenix jetwave_2114_firmware *
korenix jetwave_2424_firmware *
CVE-2023-5347

An Improper Verification of Cryptographic Signature vulnerability in the update process of Korenix JetNet Series allows replacing the whole operating system including Trusted Executables. This issue affects JetNet devices older than firmware version 2024/01.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
office@cyberdanube.com 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
korenix jetnet_6828gf-2dc48_firmware 1.0
korenix jetnet_7628x-4f-us_firmware 1.0
korenix jetnet_4508if-s_firmware 1.3
korenix jetnet_5620g-4c_firmware 1.1
korenix jetnet_6728g-24p-ac-2dc-eu_firmware 1.1
korenix jetnet_7310g-v2_firmware 1.0
korenix jetnet_6828gf-ac-dc24-eu_firmware 1.0
korenix jetnet_7628x-4f-eu_firmware 1.0
korenix jetnet_7628xp-4f-eu_firmware 1.0
korenix jetnet_4508f-m_firmware 2.3
korenix jetnet_4508-w_firmware 2.3
korenix jetnet_5612gp-4f_firmware 1.2
korenix jetnet_6528gf-ac-us_firmware 1.0
korenix jetnet_6528gf-ac-eu_firmware 1.0
korenix jetnet_6828gf-2ac-eu_firmware 1.0
korenix jetnet_4508f-mw_firmware 2.3
korenix jetnet_6828gf-2ac-au_firmware 1.0
korenix jetnet_7628xp-4f-us_firmware 1.1
korenix jetnet_7714g-m12_hvdc_firmware 1.0
korenix jetnet_6528gf-2ac-us_firmware 1.0
korenix jetnet_6528gf-2ac-eu_firmware 1.0
korenix jetnet_6910g-m12_hvdc_firmware 1.0
korenix jetnet_4508if-m_firmware 1.3
korenix jetnet_4508if-mw_firmware 1.3
korenix jetnet_4508f-sw_firmware 2.3
korenix jetnet_6828gf-ac-us_firmware 1.0
korenix jetnet_5612g-4f_firmware 1.2
korenix jetnet_5728g-24p-ac-2dc-us_firmware 2.1
korenix jetnet_6628xp-4f-us_firmware 1.1
korenix jetnet_4508if-sw_firmware 1.3
korenix jetnet_6528gf-2dc24_firmware 1.0
korenix jetnet_4508i-w_firmware 1.3
korenix jetnet_6828gf-ac-dc24-us_firmware 1.0
korenix jetnet_5310g_firmware 2.6
korenix jetnet_7628xp-4f-eu_firmware 1.1
korenix jetnet_4508_firmware 2.3
korenix jetnet_5728g-24p-ac-2dc-eu_firmware 2.1
korenix jetnet_6728g-24p-ac-2dc-us_firmware 1.1
korenix jetnet_7628xp-4f-us_firmware 1.0
korenix jetnet_6628x-4f-eu_firmware 1.0
korenix jetnet_6828gf-2ac-us_firmware 1.0
korenix jetnet_6828gf-2dc24_firmware 1.0
korenix jetnet_4508f-s_firmware 2.3
korenix jetnet_6528gf-2dc48_firmware 1.0
CVE-2023-5376

An Improper Authentication vulnerability in Korenix JetNet TFTP allows abuse of this service. This issue affects JetNet devices older than firmware version 2024/01.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
office@cyberdanube.com 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N 3.9 4.0
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
korenix jetnet_6828gf-2dc48_firmware 1.0
korenix jetnet_7628x-4f-us_firmware 1.0
korenix jetnet_4508if-s_firmware 1.3
korenix jetnet_5620g-4c_firmware 1.1
korenix jetnet_6728g-24p-ac-2dc-eu_firmware 1.1
korenix jetnet_7310g-v2_firmware 1.0
korenix jetnet_6828gf-ac-dc24-eu_firmware 1.0
korenix jetnet_7628x-4f-eu_firmware 1.0
korenix jetnet_7628xp-4f-eu_firmware 1.0
korenix jetnet_4508f-m_firmware 2.3
korenix jetnet_4508-w_firmware 2.3
korenix jetnet_5612gp-4f_firmware 1.2
korenix jetnet_6528gf-ac-us_firmware 1.0
korenix jetnet_6528gf-ac-eu_firmware 1.0
korenix jetnet_6828gf-2ac-eu_firmware 1.0
korenix jetnet_4508f-mw_firmware 2.3
korenix jetnet_6828gf-2ac-au_firmware 1.0
korenix jetnet_7628xp-4f-us_firmware 1.1
korenix jetnet_7714g-m12_hvdc_firmware 1.0
korenix jetnet_6528gf-2ac-us_firmware 1.0
korenix jetnet_6528gf-2ac-eu_firmware 1.0
korenix jetnet_6910g-m12_hvdc_firmware 1.0
korenix jetnet_4508if-m_firmware 1.3
korenix jetnet_4508if-mw_firmware 1.3
korenix jetnet_4508f-sw_firmware 2.3
korenix jetnet_6828gf-ac-us_firmware 1.0
korenix jetnet_5612g-4f_firmware 1.2
korenix jetnet_5728g-24p-ac-2dc-us_firmware 2.1
korenix jetnet_6628xp-4f-us_firmware 1.1
korenix jetnet_4508if-sw_firmware 1.3
korenix jetnet_6528gf-2dc24_firmware 1.0
korenix jetnet_4508i-w_firmware 1.3
korenix jetnet_6828gf-ac-dc24-us_firmware 1.0
korenix jetnet_5310g_firmware 2.6
korenix jetnet_7628xp-4f-eu_firmware 1.1
korenix jetnet_4508_firmware 2.3
korenix jetnet_5728g-24p-ac-2dc-eu_firmware 2.1
korenix jetnet_6728g-24p-ac-2dc-us_firmware 1.1
korenix jetnet_7628xp-4f-us_firmware 1.0
korenix jetnet_6628x-4f-eu_firmware 1.0
korenix jetnet_6828gf-2ac-us_firmware 1.0
korenix jetnet_6828gf-2dc24_firmware 1.0
korenix jetnet_4508f-s_firmware 2.3
korenix jetnet_6528gf-2dc48_firmware 1.0