CVE-2018-20219

HIGH

Teracue ENC-400 <2.56 - Auth Bypass

Title source: llm

Description

An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. After successful authentication, the device sends an authentication cookie to the end user such that they can access the devices web administration panel. This token is hard-coded to a string in the source code (/usr/share/www/check.lp file). By setting this cookie in a browser, an attacker is able to maintain access to every ENC-400 device without knowing the password, which results in authentication bypass. Even if a user changes the password on the device, this token is static and unchanged.

Exploits (1)

exploitdb WRITEUP
webappshardware
https://www.exploit-db.com/exploits/46451

References (3)

Scores

CVSS v3 8.1
EPSS 0.4290
EPSS Percentile 97.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-798
Status published
Products (3)
teracue/enc-400_hdmi2_firmware < 2.56
teracue/enc-400_hdmi_firmware < 2.56
teracue/enc-400_hdsdi_firmware < 2.56
Published Mar 21, 2019
Tracked Since Feb 18, 2026