CVE-2021-20991 – Fibaro Home Center Authenticated remote command execution
https://notcve.org/view.php?id=CVE-2021-20991
In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated user can run commands as root user using a command injection vulnerability. En dispositivos Fibaro Home Center versión 2 y Lite con versiones de firmware 4.540 y anteriores, un usuario autenticado puede ejecutar comandos como usuario root usando una vulnerabilidad de inyección de comandos Fibaro Home Center Light and Fibaro Home Center 2 versions 4.600 and below suffer from man-in-the-middle, missing authentication, remote command execution, and missing encryption vulnerabilities. • http://packetstormsecurity.com/files/162243/Fibaro-Home-Center-MITM-Missing-Authentication-Code-Execution.html http://seclists.org/fulldisclosure/2021/Apr/27 https://www.iot-inspector.com/blog/advisory-fibaro-home-center • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVE-2021-20990 – Fibaro Home Center Unauthenticated access to shutdown, reboot and reboot to recovery mode
https://notcve.org/view.php?id=CVE-2021-20990
In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal management service is accessible on port 8000 and some API endpoints could be accessed without authentication to trigger a shutdown, a reboot or a reboot into recovery mode. En los dispositivos Fibaro Home Center versión 2 y Lite con versiones de firmware 4.600 y anteriores, un servicio de administración interno es accesible en el puerto 8000 y algunos endpoints de la API pueden ser accedidos sin autenticación para desencadenar un apagado, un reinicio o un reinicio en modo de recuperación Fibaro Home Center Light and Fibaro Home Center 2 versions 4.600 and below suffer from man-in-the-middle, missing authentication, remote command execution, and missing encryption vulnerabilities. • http://packetstormsecurity.com/files/162243/Fibaro-Home-Center-MITM-Missing-Authentication-Code-Execution.html http://seclists.org/fulldisclosure/2021/Apr/27 https://www.iot-inspector.com/blog/advisory-fibaro-home-center • CWE-306: Missing Authentication for Critical Function •
CVE-2021-20989 – Fibaro Home Center Insufficient remote access server authorization
https://notcve.org/view.php?id=CVE-2021-20989
Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older initiate SSH connections to the Fibaro cloud to provide remote access and remote support capabilities. This connection can be intercepted using DNS spoofing attack and a device initiated remote port-forward channel can be used to connect to the web management interface. Knowledge of authorization credentials to the management interface is required to perform any further actions. Los dispositivos Fibaro Home Center versión 2 y Lite con versiones de firmware 4.600 y anteriores, inician conexiones SSH a la nube de Fibaro para proporcionar acceso remoto y capacidades de soporte remoto. Esta conexión puede ser interceptada usando un ataque de suplantación de DNS y puede ser usado un canal de reenvío de puerto remoto iniciado por el dispositivo para conectarse a la interfaz de administración web. • http://packetstormsecurity.com/files/162243/Fibaro-Home-Center-MITM-Missing-Authentication-Code-Execution.html http://seclists.org/fulldisclosure/2021/Apr/27 https://www.iot-inspector.com/blog/advisory-fibaro-home-center • CWE-295: Improper Certificate Validation •