CVE-2022-40981: ETIC Telecom Remote Access Server Unrestricted Upload of File with Dangerous Type
First published: Thu Nov 03 2022(Updated: )
All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to malicious file upload. An attacker could take advantage of this to store malicious files on the server, which could override sensitive and useful existing files on the filesystem, fill the hard disk to full capacity, or compromise the affected device or computers with administrator level privileges connected to the affected device.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ETIC Telecom RAS | ||
| ETIC Telecom RAS | <4.5.0 | 4.5.0 |
| ETIC Telecom RAS | <4.9.19 | 4.9.19 |
| Etictelecom Remote Access Server Firmware | <=4.5.0 | |
| All of | ||
| Any of | ||
| Etictelecom Ras-c-100-lw | ||
| Etictelecom Ras-ew-100 | ||
| Etictelecom Ras-e-220 | ||
| Etictelecom Ras-e-400 | ||
| Etictelecom Ras-ec-220-lw | ||
| Etictelecom Ras-ecw-400-lw | ||
| Etictelecom Ras-ec-480-lw | ||
| Etictelecom Ras-ecw-220-lw | ||
| Etictelecom Ras-ecw-400-lw | ||
| Etictelecom Ras-e-100 | ||
| Etictelecom Ras | ||
| Etictelecom Ras | ||
| Etictelecom Rfm-e | ||
| Etictelecom Remote Access Server Firmware | <=4.5.0 |
Remedy
ETIC Telecom recommends updating the firmware of the affected devices to the following versions: * ETIC Telecom RAS: version 4.7.0 or later https://www.etictelecom.com/en/softwares-download/ For the installed devices, ETIC Telecom recommends: * For all firmware versions 4.7.0 and above, only valid configuration files can be uploaded to the device. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify in the router configuration that: (1) The administration web page is accessible only through the LAN side over HTTPS, and (2) The administration web page is protected with authentication.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-40981?
CVE-2022-40981 is classified as a critical vulnerability due to its potential for malicious file uploads, threatening sensitive server files.
How do I fix CVE-2022-40981?
To mitigate CVE-2022-40981, upgrade your ETIC Telecom Remote Access Server to version 4.6.0 or later.
Which versions of ETIC Telecom Remote Access Server are affected by CVE-2022-40981?
CVE-2022-40981 affects all versions of the ETIC Telecom Remote Access Server up to and including version 4.5.0.
What can an attacker achieve with CVE-2022-40981?
An attacker can exploit CVE-2022-40981 to upload malicious files, potentially overriding sensitive existing files on the server.
Is there a known workaround for CVE-2022-40981?
There are no known workarounds for CVE-2022-40981 other than applying the recommended upgrade to a secure version.
- agent/type
- agent/weakness
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/remedy
- agent/first-publish-date
- agent/last-modified-date
- agent/description
- agent/event
- agent/trending
- agent/severity
- agent/source
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/author
- collector/nvd-index
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- vendor/etic telecom
- canonical/etic telecom ras
- vendor/: etic telecom
- vendor/etictelecom
- canonical/etictelecom remote access server firmware
- version/etictelecom remote access server firmware/4.5.0
- canonical/etictelecom ras-c-100-lw
- canonical/etictelecom ras-ew-100
- canonical/etictelecom ras-e-220
- canonical/etictelecom ras-e-400
- canonical/etictelecom ras-ec-220-lw
- canonical/etictelecom ras-ecw-400-lw
- canonical/etictelecom ras-ec-480-lw
- canonical/etictelecom ras-ecw-220-lw
- canonical/etictelecom ras-e-100
- canonical/etictelecom ras
- canonical/etictelecom rfm-e