CVE-2022-41607: ETIC Telecom Remote Access Server Path Traversal
First published: Thu Nov 10 2022(Updated: )
All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior’s application programmable interface (API) is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords, scripts, python objects, database files, and more.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ETIC Telecom RAS | ||
| ETIC Telecom RAS | <4.5.0 | 4.5.0 |
| ETIC Telecom RAS | <4.9.19 | 4.9.19 |
| Etictelecom Remote Access Server Firmware | <=4.5.0 | |
| All of | ||
| Etictelecom Remote Access Server Firmware | <=4.5.0 | |
| Any of | ||
| Etictelecom Ras-c-100-lw | ||
| Etictelecom Ras-ew-100 | ||
| Etictelecom Ras-e-220 | ||
| Etictelecom Ras-e-400 | ||
| Etictelecom Ras-ec-220-lw | ||
| Etictelecom Ras-ecw-400-lw | ||
| Etictelecom Ras-ec-480-lw | ||
| Etictelecom Ras-ecw-220-lw | ||
| Etictelecom Ras-ecw-400-lw | ||
| Etictelecom Ras-e-100 | ||
| Etictelecom Ras | ||
| Etictelecom Ras | ||
| Etictelecom Rfm-e |
Remedy
ETIC Telecom recommends updating the firmware of the affected devices to the following versions: * ETIC Telecom RAS: version 4.7.0 or later https://www.etictelecom.com/en/softwares-download/ For the installed devices, ETIC Telecom recommends: * This issue has been fixed in version 4.7.0. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify in the router configuration that: (1) The administration web page is accessible only through the LAN side over HTTPS, and (2) The administration web page is protected with authentication.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-41607?
CVE-2022-41607 is classified as a high severity vulnerability due to its potential to allow unauthorized file access.
How do I fix CVE-2022-41607?
To fix CVE-2022-41607, upgrade the ETIC Telecom Remote Access Server (RAS) to version 4.9.19 or later.
What versions are affected by CVE-2022-41607?
CVE-2022-41607 affects all versions of ETIC Telecom Remote Access Server up to and including 4.5.0.
What types of attacks could exploit CVE-2022-41607?
CVE-2022-41607 can be exploited through directory traversal attacks to read sensitive files from the server.
What are the potential risks of CVE-2022-41607?
The potential risks of CVE-2022-41607 include exposure of sensitive information, such as SSH private keys, which can lead to further system compromise.
- agent/type
- agent/weakness
- agent/references
- agent/title
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/severity
- agent/source
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/author
- collector/nvd-index
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- vendor/etic telecom
- canonical/etic telecom ras
- vendor/: etic telecom
- vendor/etictelecom
- canonical/etictelecom remote access server firmware
- version/etictelecom remote access server firmware/4.5.0
- canonical/etictelecom ras-c-100-lw
- canonical/etictelecom ras-ew-100
- canonical/etictelecom ras-e-220
- canonical/etictelecom ras-e-400
- canonical/etictelecom ras-ec-220-lw
- canonical/etictelecom ras-ecw-400-lw
- canonical/etictelecom ras-ec-480-lw
- canonical/etictelecom ras-ecw-220-lw
- canonical/etictelecom ras-e-100
- canonical/etictelecom ras
- canonical/etictelecom rfm-e