JVNVU#95001899
REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers
Overview
FutureNet NXR series provided by Century Systems Co., Ltd. makes REST-APIs unintentionally enabled.
Products Affected
- FutureNet NXR-G110 series firmware versions 21.15.7 and later but prior to 21.15.9
- FutureNet NXR-G060 series firmware versions prior to 21.15.6C1
- FutureNet NXR-G050 series firmware versions 21.12.5 and later but prior to 21.12.11
Description
FutureNet NXR series routers provided by Century Systems Co., Ltd. have REST-APIs, which are configured as disabled in the initial (factory default) configuration.
But, REST-APIs are unexpectedly enabled when the affected product is powered up, provided either http-server (GUI) or Web authentication is enabled (CWE-684).
The factory default configuration makes http-server (GUI) enabled, which means REST-APIs are also enabled.
The username and the password for REST-APIs are configured in the factory default configuration.
Impact
An attacker may obtain and/or alter the affected product's settings via REST-APIs.
Solution
Update the firmware
Update the firmware to the latest version.
Apply the workaround
The developer also announces the workaround for this vulnerability.
For the details of the updates or workarounds, refer to the information provided by the developer.
Vendor Status
| Vendor | Status | Last Update | Vendor Notes |
|---|---|---|---|
| Century Systems Co., Ltd. | Vulnerable | 2024/10/31 | Century Systems Co., Ltd. website |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
| Attack Vector(AV) | Physical (P) | Local (L) | Adjacent (A) | Network (N) |
|---|---|---|---|---|
| Attack Complexity(AC) | High (H) | Low (L) | ||
| Privileges Required(PR) | High (H) | Low (L) | None (N) | |
| User Interaction(UI) | Required (R) | None (N) | ||
| Scope(S) | Unchanged (U) | Changed (C) | ||
| Confidentiality Impact(C) | None (N) | Low (L) | High (H) | |
| Integrity Impact(I) | None (N) | Low (L) | High (H) | |
| Availability Impact(A) | None (N) | Low (L) | High (H) |
Credit
Century Systems Co., Ltd. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN.
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE |
CVE-2024-50357 |
| JVN iPedia |