Hardcoded credentials

2023-08-0907:15:00

PRIOn knowledge base

www.prio-n.com

phoenix contacts

web panels

remote attacker

admin privileges

cryptographic keys

valid session

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.1%

JSON

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated, remote attacker with admin privileges is able to read hardcoded cryptographic keys allowing the attacker to create valid session cookies. These session-cookies created by the attacker are not sufficient to obtain a valid session on the device.

CPENameOperatorVersion
wp_6070-wvps_firmwarelt4.0.10
wp_6101-wxps_firmwarelt4.0.10
wp_6121-wxps_firmwarelt4.0.10
wp_6156-whps_firmwarelt4.0.10
wp_6185-whps_firmwarelt4.0.10
wp_6215-whps_firmwarelt4.0.10

Name	Operator	Version
wp_6070-wvps_firmware	lt	4.0.10
wp_6101-wxps_firmware	lt	4.0.10
wp_6121-wxps_firmware	lt	4.0.10
wp_6156-whps_firmware	lt	4.0.10
wp_6185-whps_firmware	lt	4.0.10
wp_6215-whps_firmware	lt	4.0.10

References

cert.vde.com/en/advisories/VDE-2023-018/