Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2022-40895

Summary
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At-06 Oct, 2022 | 00:00
Updated At-03 Aug, 2024 | 12:28
Rejected At-
Credits

In certain Nedi products, a vulnerability in the web UI of NeDi login & Community login could allow an unauthenticated, remote attacker to affect the integrity of a device via a User Enumeration vulnerability. The vulnerability is due to insecure design, where a difference in forgot password utility could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users. This affects NeDi 1.0.7 for OS X 1.0.7 <= and NeDi for Suse 1.0.7 <= and NeDi for FreeBSD 1.0.7 <=.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:mitre
Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At:06 Oct, 2022 | 00:00
Updated At:03 Aug, 2024 | 12:28
Rejected At:
▼CVE Numbering Authority (CNA)

In certain Nedi products, a vulnerability in the web UI of NeDi login & Community login could allow an unauthenticated, remote attacker to affect the integrity of a device via a User Enumeration vulnerability. The vulnerability is due to insecure design, where a difference in forgot password utility could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users. This affects NeDi 1.0.7 for OS X 1.0.7 <= and NeDi for Suse 1.0.7 <= and NeDi for FreeBSD 1.0.7 <=.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://forum.nedi.ch/index.php
N/A
https://www.nedi.ch/
N/A
https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04f
N/A
Hyperlink: http://forum.nedi.ch/index.php
Resource: N/A
Hyperlink: https://www.nedi.ch/
Resource: N/A
Hyperlink: https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04f
Resource: N/A
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://forum.nedi.ch/index.php
x_transferred
https://www.nedi.ch/
x_transferred
https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04f
x_transferred
Hyperlink: http://forum.nedi.ch/index.php
Resource:
x_transferred
Hyperlink: https://www.nedi.ch/
Resource:
x_transferred
Hyperlink: https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04f
Resource:
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:cve@mitre.org
Published At:06 Oct, 2022 | 18:16
Updated At:07 Oct, 2022 | 20:11

In certain Nedi products, a vulnerability in the web UI of NeDi login & Community login could allow an unauthenticated, remote attacker to affect the integrity of a device via a User Enumeration vulnerability. The vulnerability is due to insecure design, where a difference in forgot password utility could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users. This affects NeDi 1.0.7 for OS X 1.0.7 <= and NeDi for Suse 1.0.7 <= and NeDi for FreeBSD 1.0.7 <=.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.19.1CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Type: Primary
Version: 3.1
Base score: 9.1
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CPE Matches
nedi
nedi
>>nedi>>Versions up to 1.0.7(inclusive)
cpe:2.3:a:nedi:nedi:*:*:*:*:*:freebsd:*:*
nedi
nedi
>>nedi>>Versions up to 1.0.7(inclusive)
cpe:2.3:a:nedi:nedi:*:*:*:*:*:suse:*:*
nedi
nedi
>>nedi>>1.0.7
cpe:2.3:a:nedi:nedi:1.0.7:*:*:*:*:mac_os_x:*:*
Weaknesses
CWE IDTypeSource
CWE-203Primarynvd@nist.gov
CWE ID: CWE-203
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://forum.nedi.ch/index.phpcve@mitre.org
Vendor Advisory
https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04fcve@mitre.org
Exploit
Third Party Advisory
https://www.nedi.ch/cve@mitre.org
Vendor Advisory
Hyperlink: http://forum.nedi.ch/index.php
Source: cve@mitre.org
Resource:
Vendor Advisory
Hyperlink: https://gist.github.com/UditChavda/2f2effa477a429b485ae7e2dc3bbd04f
Source: cve@mitre.org
Resource:
Exploit
Third Party Advisory
Hyperlink: https://www.nedi.ch/
Source: cve@mitre.org
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

2Records found
CVE-2024-25714
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.1||CRITICAL
EPSS-0.14% / 35.18%
||
7 Day CHG~0.00%
Published-11 Feb, 2024 | 00:00
Updated-18 Oct, 2024 | 14:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Rhonabwy through 1.1.13, HMAC signature verification uses a strcmp function that is vulnerable to side-channel attacks, because it stops the comparison when the first difference is spotted in the two signatures. (The fix uses gnutls_memcmp, which has constant-time execution.)

Action-Not Available
Vendor-rhonabwy_projectn/arhonabwy_projectDebian GNU/Linux
Product-rhonabwydebian_linuxn/arhonabwy
CWE ID-CWE-1255
Comparison Logic is Vulnerable to Power Side-Channel Attacks
CWE ID-CWE-203
Observable Discrepancy
CVE-2023-26556
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.1||CRITICAL
EPSS-0.36% / 57.06%
||
7 Day CHG~0.00%
Published-21 Apr, 2023 | 00:00
Updated-05 Feb, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

io.finnet tss-lib before 2.0.0 can leak a secret key via a timing side-channel attack because it relies on the scalar-multiplication implementation in Go crypto/elliptic, which is not constant time (there is an if statement in a loop). One leak is in ecdsa/keygen/round_2.go. (bnb-chain/tss-lib and thorchain/tss are also affected.)

Action-Not Available
Vendor-iofinnetn/a
Product-tss-libn/a
CWE ID-CWE-203
Observable Discrepancy
Details not found