Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-40859

Published: 07/12/2021 Updated: 10/12/2021
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 891
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Auerswald

Vulnerability Summary

Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

auerswald compact_5500r_firmware 7.8a

auerswald compact_5500r_firmware 8.0b

Vendor Advisories

Check Point Security Alerts: Auerswald COMpact 5500R Authentication Bypass (CVE-2021-40859)
Check Point Reference: CPAI-2021-2140 Date Published: 20 Mar 2024 Severity: Critical ...

Exploits

Exploit DB: Auerswald COMpact 8.0B Backdoors
RedTeam Pentesting discovered several backdoors in the firmware for the Auerswald COMpact 5500R PBX These backdoors allow attackers who are able to access the web-based management application full administrative access to the device Versions 80B and below are affected ...

Mailing Lists

Full Disclosure: [RT-SA-2021-007] Auerswald COMpact Multiple Backdoors
<!--X-Body-Begin--> <!--X-User-Header--> Full Disclosure mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> [RT-SA-2021-007] Auerswald COMpact Multiple Backdoors <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Red ...

Github Repositories

https://github.com/419066074/CVE-2021-40859

Auerswald COMpact 8.0B Backdoors exploit

CVE-2021-40859 Auerswald COMpact 80B Backdoors exploit About Backdoors were discovered in Auerswald COMpact 5500R 78A and 80B devices, that allow attackers with access to the web based management application full administrative access to the device Product Details Product: COMpact 3000 ISDN, COMpact 3000 analog, COMpact 3000 VoIP, COMpact 4000, COMpact 5000(R), COMpact 5200

https://github.com/dorkerdevil/CVE-2021-40859

Auerswald COMpact 8.0B Backdoors exploit

CVE-2021-40859 Auerswald COMpact 80B Backdoors exploit About Backdoors were discovered in Auerswald COMpact 5500R 78A and 80B devices, that allow attackers with access to the web based management application full administrative access to the device Product Details Product: COMpact 3000 ISDN, COMpact 3000 analog, COMpact 3000 VoIP, COMpact 4000, COMpact 5000(R), COMpact 5200

https://github.com/pussycat0x/CVE-2021-40859

Auerswald VoIP System Secret Backdoors -PoC

CVE-2021-40859 Auerswald VoIP System Secret Backdoors -PoC Tool usage: CVE-2021-40859py target:port

References

NVD-CWE-Otherhttps://www.redteam-pentesting.de/en/advisories/-advisories-publicised-vulnerability-analyseshttps://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoorshttps://nvd.nist.govhttps://github.com/419066074/CVE-2021-40859https://packetstormsecurity.com/files/165168/Auerswald-COMpact-8.0B-Backdoors.htmlhttps://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2021-2140.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook