CVE-2019-15310
Last modified
CVE-2019-15310 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An issue was discovered on various devices via the Linkplay firmware. There is WAN remote code execution without user interaction. EPSS estimates a 8.26% chance of exploitation in the next 30 days.
Description
An issue was discovered on various devices via the Linkplay firmware. There is WAN remote code execution without user interaction. An attacker could retrieve the AWS key from the firmware and obtain full control over Linkplay's AWS estate, including S3 buckets containing device firmware. When combined with an OS command injection vulnerability within the XML Parsing logic of the firmware update process, an attacker would be able to gain code execution on any device that attempted to update. Note that by default all devices tested had automatic updates enabled.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Linkplay | Linkplay | All versions |
References
- https://labs.f-secure.com/advisories/linkplay-firmware-wanlan-remote-code-execution/Exploit, Third Party Advisory
- https://labs.mwrinfosecurity.com/advisories/Third Party Advisory
- https://labs.f-secure.com/advisories/linkplay-firmware-wanlan-remote-code-execution/Exploit, Third Party Advisory
- https://labs.mwrinfosecurity.com/advisories/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-15310?
How severe is CVE-2019-15310?
How do I fix CVE-2019-15310?
Are you affected by CVE-2019-15310?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST