Add files via upload

2021-12-22 09:30:36 +05:30 · 2021-12-22 09:30:36 +05:30 · 4b6a46f06f
parent 89279d7d06
commit 4b6a46f06f
1 changed files with 32 additions and 0 deletions
--- a/cves/2021/CVE-2021-40859.yaml
+++ b/cves/2021/CVE-2021-40859.yaml
@ -0,0 +1,32 @@
+id: CVE-2021-40859
+info:
+  name: CVE-2021-40859
+  author: pussycat0x
+  severity: critical
+  description: unauthenticated endpoint ("https://192.168.1[.]2/about_state"), enabling the bad actor to gain access to a web interface that allows for resetting the administrator password.
+  reference: https://thehackernews.com/2021/12/secret-backdoors-found-in-german-made.html  
+  metadata:
+    fofa-dork: '"auerswald"'
+  tags: iot, unauth, voip
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/about_state"
+      - "{{BaseURL}}:9000/about_state"
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '"pbx"'
+          - '"dongleStatus":0'
+          - '"macaddr"'
+        condition: and
+
+      - type: word
+        words:
+          - "application/json"
+        part: header
+
+      - type: status
+        status:
+          - 200