CVE-2017-7649
CRITICALEclipse Kura < 2.1.0 - Unauthenticated Remote Command Execution via Equinox Console
Title source: llmDescription
The network enabled distribution of Kura before 2.1.0 takes control over the device's firewall setup but does not allow IPv6 firewall rules to be configured. Still the Equinox console port 5002 is left open, allowing to log into Kura without any user credentials over unencrypted telnet and executing commands using the Equinox "exec" command. As the process is running as "root" full control over the device can be acquired. IPv6 is also left in auto-configuration mode, accepting router advertisements automatically and assigns a MAC address based IPv6 address.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_confirm
https://bugs.eclipse.org/bugs/show_bug.cgi?id=514681
Third Party Advisory x_refsource_confirm
https://github.com/eclipse/kura/issues/956
Scores
CVSS v3
9.8
EPSS
0.0037
EPSS Percentile
59.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (2)
eclipse/kura
< 2.0.2
Eclipse Foundation/Eclipse Kura Installer
unspecified - 2.1.0
Published
Sep 11, 2017
Tracked Since
Feb 18, 2026