JVNVU#90821877
UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions
Overview
Multiple digital video recorders provided by UNIMO Technology Co., Ltd do not perform authentication for some critical functions.
Products Affected
- UDR-JA1004/JA1008/JA1016 firmware versions v1.0.20.13 and earlier
- UDR-JA1016 firmware versions v2.0.20.13 and earlier
Description
Multiple digital video recorders provided by UNIMO Technology Co., Ltd do not perform authentication for some critical functions (CWE-306) in the device management web interface.
The reporter states that attacks exploiting this vulnerability have been observed.
Impact
When a remote attacker sends a crafted request to the web interface, an arbitrary OS command may be executed on the product without authentication.
Solution
Update the firmware
Update the firmware to the latest version according to the information provided by the developer.
This vulnerability has been addressed in the firmware versions v1.0.21.0 and v2.0.21.0.
Vendor Status
| Vendor | Link |
| UNIMO Technology Co., Ltd | Notification Updated firmwares for UDR-JA1004/JA1008/JA1016 (Text in Japanese) |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
| Attack Vector(AV) | Physical (P) | Local (L) | Adjacent (A) | Network (N) |
|---|---|---|---|---|
| Attack Complexity(AC) | High (H) | Low (L) | ||
| Privileges Required(PR) | High (H) | Low (L) | None (N) | |
| User Interaction(UI) | Required (R) | None (N) | ||
| Scope(S) | Unchanged (U) | Changed (C) | ||
| Confidentiality Impact(C) | None (N) | Low (L) | High (H) | |
| Integrity Impact(I) | None (N) | Low (L) | High (H) | |
| Availability Impact(A) | None (N) | Low (L) | High (H) |
Credit
Yoshiki Mori, Ushimaru Hayato and Masaki Kubo of National Institute of Information and Communications Technology Cybersecurity Research Institute reported this vulnerability to the developer and coordinated. After coordination was completed, this case was reported to JPCERT/CC and JPCERT/CC coordinated with the developer for the publication.
Other Information
| JPCERT Alert |
|
| JPCERT Reports |
|
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2022-35733 |
| JVN iPedia |
|
Update History
- 2022/08/22
- Fixed the typo under the section [Impact]