CVE-2019-13405 - Vulnerability Details - OpenCVE

A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Androvideo	Vd 1 Vd 1 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:androvideo:vd_1_firmware:230:*:*:*:*:*:*:*

cpe:2.3:h:androvideo:vd_1:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://surl.twcert.org.tw/VeNHn
https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md
https://tvn.twcert.org.tw/taiwanvn/TVN-201906006

History

No history.

MITRE

Status: PUBLISHED

Assigner: twcert

Published: 2019-08-29T00:19:23.331985Z

Updated: 2024-09-16T22:24:40.037Z

Reserved: 2019-07-08T00:00:00

Link: CVE-2019-13405

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-08-29T01:15:11.587

Modified: 2024-11-21T04:24:52.740

Link: CVE-2019-13405

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Advan VD-1 firmware", "vendor": "AndroVideo", "versions": [{"status": "affected", "version": "230"}]}], "credits": [{"lang": "en", "value": "Keniver Wang (CHT Security)"}], "datePublic": "2019-08-20T00:00:00", "descriptions": [{"lang": "en", "value": "A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software."}], "problemTypes": [{"descriptions": [{"description": "Broken access control", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-08-29T00:19:23", "orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "shortName": "twcert"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://surl.twcert.org.tw/VeNHn"}], "source": {"discovery": "EXTERNAL"}, "title": "Advan VD-1 allows a remote user to enable Android Debug Bridge without any authentication", "x_generator": {"engine": "Vulnogram 0.0.7"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@cert.org.tw", "DATE_PUBLIC": "2019-08-20T16:00:00.000Z", "ID": "CVE-2019-13405", "STATE": "PUBLIC", "TITLE": "Advan VD-1 allows a remote user to enable Android Debug Bridge without any authentication"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Advan VD-1 firmware", "version": {"version_data": [{"version_value": "230"}]}}]}, "vendor_name": "AndroVideo"}]}}, "credit": [{"lang": "eng", "value": "Keniver Wang (CHT Security)"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software."}]}, "generator": {"engine": "Vulnogram 0.0.7"}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Broken access control"}]}]}, "references": {"reference_data": [{"name": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md", "refsource": "CONFIRM", "url": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md"}, {"name": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006", "refsource": "CONFIRM", "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006"}, {"name": "http://surl.twcert.org.tw/VeNHn", "refsource": "CONFIRM", "url": "http://surl.twcert.org.tw/VeNHn"}]}, "source": {"discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T23:49:25.021Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://surl.twcert.org.tw/VeNHn"}]}]}, "cveMetadata": {"assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "assignerShortName": "twcert", "cveId": "CVE-2019-13405", "datePublished": "2019-08-29T00:19:23.331985Z", "dateReserved": "2019-07-08T00:00:00", "dateUpdated": "2024-09-16T22:24:40.037Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:androvideo:vd_1_firmware:230:*:*:*:*:*:*:*", "matchCriteriaId": "A7EEB1BD-5408-4817-B9A2-8C77739FE814", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:androvideo:vd_1:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1574006-94D7-4144-BE9D-FD28A920FF65", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software."}, {"lang": "es", "value": "Una vulnerabilidad de control de acceso rota encontrada en la versi\u00f3n 230 del firmware de Advan VD-1 conduce a un servicio ADB inseguro. Un atacante puede enviar una solicitud POST a cgibin/AdbSetting.cgi para habilitar ADB sin ninguna autenticaci\u00f3n y, a continuaci\u00f3n, tomar el dispositivo comprometido como una retransmisi\u00f3n o instalar software de miner\u00eda de datos."}], "id": "CVE-2019-13405", "lastModified": "2024-11-21T04:24:52.740", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-08-29T01:15:11.587", "references": [{"source": "twcert@cert.org.tw", "tags": ["Third Party Advisory"], "url": "http://surl.twcert.org.tw/VeNHn"}, {"source": "twcert@cert.org.tw", "tags": ["Exploit", "Third Party Advisory"], "url": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md"}, {"source": "twcert@cert.org.tw", "tags": ["Third Party Advisory"], "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://surl.twcert.org.tw/VeNHn"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201906006"}], "sourceIdentifier": "twcert@cert.org.tw", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "nvd@nist.gov", "type": "Primary"}]}