admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2022/CVE-2022-329xx/CVE-2022-32985.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

543 lines
17 KiB
JSON
Raw Blame History

{
"id": "CVE-2022-32985",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-07-17T23:15:09.060",
"lastModified": "2024-11-21T07:07:21.563",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "libnx_apl.so on Nexans FTTO GigaSwitch before 6.02N and 7.x before 7.02 implements a Backdoor Account for SSH logins on port 50200 or 50201."
},
{
"lang": "es",
"value": "El archivo libnx_apl.so en Nexans FTTO GigaSwitch versiones anteriores a 6.02N y versiones 7.x anteriores a 7.02, implementa una cuenta de puerta trasera para los inicios de sesi\u00f3n SSH en el puerto 50200 o 50201"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-798"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_641_desk_v5_sfp-vi_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "F130901E-4D8F-4036-BB59-78A5A09A4B38"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_641_desk_v5_sfp-vi_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "5FBE97B6-6B70-4F20-B4E2-984872B9851F"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_641_desk_v5_sfp-vi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "01E53A0B-FDEF-4AB5-AFC8-E32F5FDF7E1A"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_642_desk_v5_sfp-2vi_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "DCAB8644-7C58-4447-B9CF-F89114CF09FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_642_desk_v5_sfp-2vi_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "E6D07D42-0290-437F-AC78-B601B793DE42"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_642_desk_v5_sfp-2vi:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6AE029D9-A834-4F8E-9D31-2995CD662A30"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp\\(pd-f\\+\\)_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "FD36F20F-657B-40B9-A0BE-BC618925DD03"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp\\(pd-f\\+\\)_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "1B4FEBD1-5DF2-4A41-97DB-6D1BDF7F6C7B"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_2tp\\(pd-f\\+\\)_sfp-vi_54vdc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "26DC7E05-780F-4619-B9CA-791F8A800CB5"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp\\(pse\\+\\)_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "3A06836D-0277-42FB-89A7-F447A8965949"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp\\(pse\\+\\)_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "3E9D8E02-2F9B-4162-AA10-5DDF737E2917"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_2tp\\(pse\\+\\)_sfp-vi_54vdc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2EC7A7E6-8372-4524-A670-D25F72DC2136"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "FA8E1089-06DF-4037-A64A-62605B85BAAB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_2tp_sfp-vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "8307E535-1C06-4F95-B5C0-E05607EC40CB"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_2tp_sfp-vi_54vdc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D2505199-CA23-4240-AB85-61A871D61A57"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_sfp-2vi_230vac_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "254E133B-73D6-44F5-80FF-42292F0DC2E2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_sfp-2vi_230vac_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "07DC03AC-D4AC-472D-9AFB-6EB88762FC5A"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_sfp-2vi_230vac:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1597D8F8-7997-4CFE-AA01-F973894745C6"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "378B152F-C30A-4CE2-927E-B6568BB319C7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "A7ED3A23-42FF-46E7-86A5-449E86126F2D"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBDD9F34-59FB-48B1-A7AB-CA4149BFF294"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_ind_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "399951C7-0507-4A6A-93BB-E395B30C20F9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_ind_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "AC63EDA8-7F04-4BB1-B697-7393F7A95BCC"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_ind:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A366AC40-7F7C-473D-9CC2-CED9768BDA3D"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_med_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "2EA2A765-1CE5-4C18-A32F-B02FDCBAF93B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_med_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "3E813952-F099-46D3-B042-5C3099745EF4"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp\\(pse\\+\\)_sfp-2vi_54vdc_med:-:*:*:*:*:*:*:*",
"matchCriteriaId": "23ED5429-62BF-442D-A99A-B98EA8AFF063"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "B490CF52-7C24-4D21-9451-AB85C3BEC82B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "03163410-20A5-45CB-BBF4-D7ED19AB452F"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33EB6A88-9015-4F2D-A820-E982016B3F9F"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_ind_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "4CD0607F-8124-4478-A550-6E19C8CA2948"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_ind_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "4B00F440-6229-4C48-89FA-F32CCEB16877"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_ind:-:*:*:*:*:*:*:*",
"matchCriteriaId": "59BFE60D-A94C-4C86-9D60-FED3694CCE1B"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_med_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "3B6720C6-3BFA-4990-B285-F3B56C452274"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_med_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "1795910D-46E2-44E9-AA4A-4C5F8B85079A"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp_sfp-2vi_54vdc_med:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A723AEC-BD82-437D-B35E-E15F440A56E6"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-vi_230vac_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.02n",
"matchCriteriaId": "EBE47298-6058-4086-BD59-B5AC3115029D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:nexans:gigaswitch_v5_tp_sfp-vi_230vac_firmware:*:*:*:*:*:*:*:*",
"versionStartIncluding": "7.0",
"versionEndExcluding": "7.02",
"matchCriteriaId": "F7B4CA67-58AB-4B69-A80C-4C828D0D8D4D"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:nexans:gigaswitch_v5_tp_sfp-vi_230vac:-:*:*:*:*:*:*:*",
"matchCriteriaId": "98ACC6A5-5030-40DA-8D0E-C0AFF94D3748"
}
]
}
]
}
],
"references": [
{
"url": "https://sec-consult.com/vulnerability-lab/advisory/hardcoded-backdoor-user-outdated-software-components-nexans-ftto-gigaswitch/",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://www.nexans.de/de/products/Data-Network-Solutions/Industrial-and-office-switches.html",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://sec-consult.com/vulnerability-lab/advisory/hardcoded-backdoor-user-outdated-software-components-nexans-ftto-gigaswitch/",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://www.nexans.de/de/products/Data-Network-Solutions/Industrial-and-office-switches.html",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink