CVE-2022-25219

Summary

CVE	CVE-2022-25219
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-03-10 17:47:00 UTC
Updated	2023-08-08 14:22:00 UTC
Description	A null byte interaction error has been discovered in the code that the telnetd_startup daemon uses to construct a pair of ephemeral passwords that allow a user to spawn a telnet service on the router, and to ensure that the telnet service persists upon reboot. By means of a crafted exchange of UDP packets, an unauthenticated attacker on the local network can leverage this null byte interaction error in such a way as to make those ephemeral passwords predictable (with 1-in-94 odds). Since the attacker must manipulate data processed by the OpenSSL function RSA_public_decrypt(), successful exploitation of this vulnerability depends on the use of an unpadded RSA cipher (CVE-2022-25218).

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Phicomm	K2	-	All	All	All
Hardware	Phicomm	K2g	-	All	All	All
Operating System	Phicomm	K2g Firmware	All	All	All	All
Hardware	Phicomm	K2p	-	All	All	All
Operating System	Phicomm	K2p Firmware	All	All	All	All
Operating System	Phicomm	K2 Firmware	All	All	All	All
Hardware	Phicomm	K3	-	All	All	All
Hardware	Phicomm	K3c	-	All	All	All
Operating System	Phicomm	K3c Firmware	All	All	All	All
Operating System	Phicomm	K3 Firmware	All	All	All	All

References

Reference	Source	Link	Tags
Unpatchable Vulnerabilities in Phicomm Router Firmware - Research Advisory \| Tenable®	MISC	www.tenable.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.