CVE-2022-36158 - Vulnerability Details - OpenCVE

Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi).

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact total

Vendors	Products
Contec	Fxa2000 Fxa2000 Firmware Fxa3000 Fxa3000 Firmware Fxa3020 Fxa3020 Firmware Fxa3200 Fxa3200 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:contec:fxa3000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:contec:fxa3000:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:contec:fxa3020_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:contec:fxa3020:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:contec:fxa3200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:contec:fxa3200:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:contec:fxa2000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:contec:fxa2000:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4
https://jvn.jp/en/vu/JVNVU98305100/
https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo
https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section

History

Wed, 21 May 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 8.0, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}` cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-09-26T10:07:23.000Z

Updated: 2025-05-21T16:08:48.872Z

Reserved: 2022-07-18T00:00:00.000Z

Link: CVE-2022-36158

Vulnrichment

Updated: 2024-08-03T10:00:04.566Z

NVD

Status : Modified

Published: 2022-09-26T11:15:09.483

Modified: 2025-05-21T16:15:26.243

Link: CVE-2022-36158

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi)."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-09-26T10:07:23.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section"}, {"tags": ["x_refsource_MISC"], "url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4"}, {"tags": ["x_refsource_MISC"], "url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo"}, {"tags": ["x_refsource_MISC"], "url": "https://jvn.jp/en/vu/JVNVU98305100/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-36158", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section", "refsource": "MISC", "url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section"}, {"name": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4", "refsource": "MISC", "url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4"}, {"name": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo", "refsource": "MISC", "url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo"}, {"name": "https://jvn.jp/en/vu/JVNVU98305100/", "refsource": "MISC", "url": "https://jvn.jp/en/vu/JVNVU98305100/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T10:00:04.566Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://jvn.jp/en/vu/JVNVU98305100/"}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-425", "lang": "en", "description": "CWE-425 Direct Request ('Forced Browsing')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-05-21T16:08:21.426174Z", "id": "CVE-2022-36158", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T16:08:48.872Z"}}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-36158", "datePublished": "2022-09-26T10:07:23.000Z", "dateReserved": "2022-07-18T00:00:00.000Z", "dateUpdated": "2025-05-21T16:08:48.872Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://jvn.jp/en/vu/JVNVU98305100/", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T10:00:04.566Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-36158", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-05-21T16:08:21.426174Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-425", "description": "CWE-425 Direct Request ('Forced Browsing')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T16:08:45.684Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section", "tags": ["x_refsource_MISC"]}, {"url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4", "tags": ["x_refsource_MISC"]}, {"url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo", "tags": ["x_refsource_MISC"]}, {"url": "https://jvn.jp/en/vu/JVNVU98305100/", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi)."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2022-09-26T10:07:23.000Z"}, "x_legacyV4Record": {"affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "n/a"}]}, "product_name": "n/a"}]}, "vendor_name": "n/a"}]}}, "data_type": "CVE", "references": {"reference_data": [{"url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section", "name": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section", "refsource": "MISC"}, {"url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4", "name": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4", "refsource": "MISC"}, {"url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo", "name": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo", "refsource": "MISC"}, {"url": "https://jvn.jp/en/vu/JVNVU98305100/", "name": "https://jvn.jp/en/vu/JVNVU98305100/", "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2022-36158", "STATE": "PUBLIC", "ASSIGNER": "cve@mitre.org"}}}}, "cveMetadata": {"cveId": "CVE-2022-36158", "state": "PUBLISHED", "dateUpdated": "2025-05-21T16:08:48.872Z", "dateReserved": "2022-07-18T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2022-09-26T10:07:23.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:contec:fxa3000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6E67687B-F390-444A-8E80-250763681261", "versionEndIncluding": "1.13.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:contec:fxa3000:-:*:*:*:*:*:*:*", "matchCriteriaId": "9AB86C4B-366E-4560-94A9-9821C2CCC5C2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:contec:fxa3020_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2BBBCFC0-97C2-4777-B49D-D010E8094774", "versionEndIncluding": "1.13.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:contec:fxa3020:-:*:*:*:*:*:*:*", "matchCriteriaId": "8ECA2469-3831-4AF5-B3C8-A5958AF2900C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:contec:fxa3200_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E38C56EE-4B13-4ADC-BCD4-D7FD4F077ED5", "versionEndIncluding": "1.13.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:contec:fxa3200:-:*:*:*:*:*:*:*", "matchCriteriaId": "20886C6B-D3B4-438D-BBAF-F80AEE3B8762", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:contec:fxa2000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DA3E66D5-3D23-49C9-8920-7D96ACEFA96F", "versionEndExcluding": "1.39.00", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:contec:fxa2000:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4A09AF9-472E-4FC0-A490-EF21EB37D47C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi)."}, {"lang": "es", "value": "Contec FXA3200 versiones 1.13.00 y anteriores, sufre de permisos no seguros en la interfaz del Wireless LAN Manager, lo que permite a actores maliciosos ejecutar comandos de Linux con privilegios de root por medio de una p\u00e1gina web oculta (/usr/www/ja/mnt_cmd.cgi).\n"}], "id": "CVE-2022-36158", "lastModified": "2025-05-21T16:15:26.243", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2022-09-26T11:15:09.483", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory"], "url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU98305100/"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory"], "url": "https://gist.github.com/Nwqda/aac33d1936d2b514a3268f145345abb4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://jvn.jp/en/vu/JVNVU98305100/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "url": "https://samy.link/blog/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://www.contec.com/products-services/computer-networking/flexlan-fx/fx-accesspoint/fxa3200/feature/#section"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-425"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-425"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}