Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-7206

Summary
Assigner-CoolKit
Assigner Org ID-68870bb1-d075-4169-957d-e580b18692b9
Published At-08 Oct, 2024 | 06:14
Updated At-08 Oct, 2024 | 18:40
Rejected At-
Credits

Firmware extraction and Hardware SSL Pinning Bypass

SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS communication and Extract secrets to clone the device via Flash the modified firmware

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:CoolKit
Assigner Org ID:68870bb1-d075-4169-957d-e580b18692b9
Published At:08 Oct, 2024 | 06:14
Updated At:08 Oct, 2024 | 18:40
Rejected At:
▼CVE Numbering Authority (CNA)
Firmware extraction and Hardware SSL Pinning Bypass

SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS communication and Extract secrets to clone the device via Flash the modified firmware

Affected Products
Vendor
eWeLink
Product
Zigbee Bridge Pro
Platforms
  • freeRTOS
Default Status
unaffected
Versions
Affected
  • From 0 through 2.0.0 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-295CWE-295 Improper Certificate Validation
CWECWE-798CWE-798 Use of Hard-coded Credentials
Type: CWE
CWE ID: CWE-295
Description: CWE-295 Improper Certificate Validation
Type: CWE
CWE ID: CWE-798
Description: CWE-798 Use of Hard-coded Credentials
Metrics
VersionBase scoreBase severityVector
4.07.0HIGH
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Version: 4.0
Base score: 7.0
Base severity: HIGH
Vector:
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-184CAPEC-184 Software Integrity Attack
CAPEC ID: CAPEC-184
Description: CAPEC-184 Software Integrity Attack
Solutions

Upgrade to firmware 2.1.0 and above

Configurations
Workarounds
Exploits
Credits
reporter
Aarav Sinha, Senior Security Researcher, FEV India Pvt Ltd.
reporter
Jerin Sunny, Security Researcher, FEV India Pvt Ltd.
reporter
Shakir Zari,Security Researcher,FEV India Pvt Ltd.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://ewelink.cc/security-advisory-firmware-extraction-and-hardware-ssl-pinning-bypass/
N/A
Hyperlink: https://ewelink.cc/security-advisory-firmware-extraction-and-hardware-ssl-pinning-bypass/
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:68870bb1-d075-4169-957d-e580b18692b9
Published At:08 Oct, 2024 | 07:15
Updated At:10 Oct, 2024 | 12:56

SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS communication and Extract secrets to clone the device via Flash the modified firmware

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary4.07.0HIGH
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Type: Secondary
Version: 4.0
Base score: 7.0
Base severity: HIGH
Vector:
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-295Secondary68870bb1-d075-4169-957d-e580b18692b9
CWE-798Secondary68870bb1-d075-4169-957d-e580b18692b9
CWE ID: CWE-295
Type: Secondary
Source: 68870bb1-d075-4169-957d-e580b18692b9
CWE ID: CWE-798
Type: Secondary
Source: 68870bb1-d075-4169-957d-e580b18692b9
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://ewelink.cc/security-advisory-firmware-extraction-and-hardware-ssl-pinning-bypass/68870bb1-d075-4169-957d-e580b18692b9
N/A
Hyperlink: https://ewelink.cc/security-advisory-firmware-extraction-and-hardware-ssl-pinning-bypass/
Source: 68870bb1-d075-4169-957d-e580b18692b9
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

1Records found
CVE-2024-11147
Matching Score-4
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) U.S. Civilian Government
ShareView Details
Matching Score-4
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) U.S. Civilian Government
CVSS Score-7||HIGH
EPSS-0.05% / 13.77%
||
7 Day CHG~0.00%
Published-23 Jan, 2025 | 16:37
Updated-12 Feb, 2025 | 17:07
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ECOVACS lawnmowers and vacuums deterministic root password

ECOVACS robot lawnmowers and vacuums use a deterministic root password generated based on model and serial number. An attacker with shell access can login as root.

Action-Not Available
Vendor-ECOVACS
Product-Unspecified robots
CWE ID-CWE-798
Use of Hard-coded Credentials
Details not found