CVE-2018-5402

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN

Description

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once authenticated can change configurations, upload new configuration files, and upload executable code via file upload for firmware updates. Requires access to the network. Affected releases are Auto-Maskin DCU-210E, RP-210E, and the Marine Pro Observer Android App. Versions prior to 3.7 on ARMv7.

Remediation

Solution:

The devices should implement TLS for authentication to administrator functions via embedded webserver.

References

Link	Tags
https://www.kb.cert.org/vuls/id/176301	third party advisory us government resource
https://www.us-cert.gov/ics/advisories/icsa-20-051-04

Frequently Asked Questions

What is the severity of CVE-2018-5402?: CVE-2018-5402 has been scored as a critical severity vulnerability.
How to fix CVE-2018-5402?: To fix CVE-2018-5402: The devices should implement TLS for authentication to administrator functions via embedded webserver.
Is CVE-2018-5402 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2018-5402 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-5402?: CVE-2018-5402 affects Auto-Maskin DCU-210E, Auto-Maskin RP-210E.

Description

Remediation

Categories

CWE-319 – Cleartext Transmission of Sensitive Information

CWE-310 – Cryptographic Issues

References

Frequently Asked Questions