CVE-2022-3703 (GCVE-0-2022-3703)

Vulnerability from cvelistv5 – Published: 2022-11-10 21:32 – Updated: 2025-04-16 17:43
VLAI?
Title
ETIC Telecom Remote Access Server Insufficient Verification of Data Authenticity
Summary
All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior’s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.
Severity ?
7.6 (High)
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
CWE
  • CWE-345 - Insufficient Verification of Data Authenticity
Assigner
References
Impacted products
Vendor Product Version
ETIC Telecom Remote Access Server (RAS) Affected: 0 , ≤ 4.5.0 (custom)
Create a notification for this product.
Credits
Haviv Vaizman, Hay Mizrachi, Alik Koldobsky, Ofir Manzur, and Nikolay Sokolik of OTORIO reported these vulnerabilities to CISA
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T01:20:57.038Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-3703",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-16T17:26:06.575715Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-16T17:43:14.326Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Remote Access Server (RAS)",
          "vendor": "ETIC Telecom",
          "versions": [
            {
              "lessThanOrEqual": "4.5.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Haviv Vaizman, Hay Mizrachi, Alik Koldobsky, Ofir Manzur, and Nikolay Sokolik of OTORIO reported these vulnerabilities to CISA"
        }
      ],
      "datePublic": "2022-11-03T06:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eAll versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.\u003c/p\u003e"
            }
          ],
          "value": "All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-345",
              "description": "CWE-345 Insufficient Verification of Data Authenticity",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-08-23T16:11:43.290Z",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eETIC Telecom recommends updating the firmware of the affected devices to the following versions:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003e\u003cp\u003eETIC Telecom RAS: \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.etictelecom.com/en/softwares-download/\"\u003eversion 4.7.0 or later\u003c/a\u003e\u003c/p\u003e\u003c/li\u003e\u003c/ul\u003e\u003cp\u003eFor the installed devices, ETIC Telecom recommends:\u003c/p\u003e\u003cul\u003e\u003cli\u003eFor all firmware versions 4.7.0 and above, there is a code signature verification for firmware packages. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify: (1) That the downloaded firmware comes from a trusted source (ETIC Telecom web site), and (2) The hash of the firmware files.\u003c/li\u003e\u003c/ul\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "ETIC Telecom recommends updating the firmware of the affected devices to the following versions:\n\n\n  *  ETIC Telecom RAS:  version 4.7.0 or later https://www.etictelecom.com/en/softwares-download/ \n\n\n\n\nFor the installed devices, ETIC Telecom recommends:\n\n  *  For all firmware versions 4.7.0 and above, there is a code signature verification for firmware packages. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify: (1) That the downloaded firmware comes from a trusted source (ETIC Telecom web site), and (2) The hash of the firmware files."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "ETIC Telecom Remote Access Server Insufficient Verification of Data Authenticity",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2022-3703",
    "datePublished": "2022-11-10T21:32:01.836Z",
    "dateReserved": "2022-10-26T00:00:00.000Z",
    "dateUpdated": "2025-04-16T17:43:14.326Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:etictelecom:remote_access_server_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"4.5.0\", \"matchCriteriaId\": \"7AE4F7CD-BE37-40B5-9A53-39B42CD17EF5\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-c-100-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DAE45DD-78EE-4ACB-A1E5-C190BE642BDF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-e-100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93F02AE2-6AC3-492E-9E91-E9F0725A1EEB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-e-220:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C32ED13F-237B-441C-8032-F54615AEFC73\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-e-400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86536932-B27A-4028-829D-2924CD431C54\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ec-220-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52E2D325-0AE3-4459-9F27-5CC19349F060\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ec-400-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB8D1AA9-42C0-4546-A02E-91B3D7A8AD4B\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ec-480-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"50EEA797-3218-44FE-8D93-178C40F4BF17\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ecw-220-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E768A79E-BBFD-47C1-8535-1F721D92575C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ecw-400-lw:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1D86798-3C5F-40A9-BF41-0602F78A027B\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ew-100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D12CC48E-6DAC-4412-9068-04B774540500\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ew-220:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7D7A25F4-412A-4D16-922F-1219B86E31A0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:ras-ew-400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32675A39-A1B3-4773-902A-6E6F8A72D16D\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:etictelecom:rfm-e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B7543976-5400-4A9E-8E62-CB65FD00D0E1\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.\"}, {\"lang\": \"es\", \"value\": \"Todas las versiones de ETIC Telecom Remote Access Server (RAS) 4.5.0 y el portal web anterior son vulnerables a aceptar paquetes de firmware maliciosos que podr\\u00edan proporcionar backdoor a un atacante y proporcionar una escalada de privilegios al dispositivo.\"}]",
      "id": "CVE-2022-3703",
      "lastModified": "2024-11-21T07:20:04.203",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"ics-cert@hq.dhs.gov\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 7.6, \"baseSeverity\": \"HIGH\", \"attackVector\": \"ADJACENT_NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.0, \"impactScore\": 6.0}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 10.0, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 6.0}]}",
      "published": "2022-11-10T22:15:14.647",
      "references": "[{\"url\": \"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\", \"source\": \"ics-cert@hq.dhs.gov\", \"tags\": [\"Patch\", \"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\", \"US Government Resource\"]}]",
      "sourceIdentifier": "ics-cert@hq.dhs.gov",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"ics-cert@hq.dhs.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-345\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-3703\",\"sourceIdentifier\":\"ics-cert@hq.dhs.gov\",\"published\":\"2022-11-10T22:15:14.647\",\"lastModified\":\"2024-11-21T07:20:04.203\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.\"},{\"lang\":\"es\",\"value\":\"Todas las versiones de ETIC Telecom Remote Access Server (RAS) 4.5.0 y el portal web anterior son vulnerables a aceptar paquetes de firmware maliciosos que podr\u00edan proporcionar backdoor a un atacante y proporcionar una escalada de privilegios al dispositivo.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"ics-cert@hq.dhs.gov\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":7.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.0,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":10.0,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"ics-cert@hq.dhs.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-345\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:etictelecom:remote_access_server_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.5.0\",\"matchCriteriaId\":\"7AE4F7CD-BE37-40B5-9A53-39B42CD17EF5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-c-100-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAE45DD-78EE-4ACB-A1E5-C190BE642BDF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-e-100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93F02AE2-6AC3-492E-9E91-E9F0725A1EEB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-e-220:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C32ED13F-237B-441C-8032-F54615AEFC73\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-e-400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86536932-B27A-4028-829D-2924CD431C54\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ec-220-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52E2D325-0AE3-4459-9F27-5CC19349F060\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ec-400-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8D1AA9-42C0-4546-A02E-91B3D7A8AD4B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ec-480-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50EEA797-3218-44FE-8D93-178C40F4BF17\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ecw-220-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E768A79E-BBFD-47C1-8535-1F721D92575C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ecw-400-lw:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1D86798-3C5F-40A9-BF41-0602F78A027B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ew-100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D12CC48E-6DAC-4412-9068-04B774540500\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ew-220:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D7A25F4-412A-4D16-922F-1219B86E31A0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:ras-ew-400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32675A39-A1B3-4773-902A-6E6F8A72D16D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:etictelecom:rfm-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7543976-5400-4A9E-8E62-CB65FD00D0E1\"}]}]}],\"references\":[{\"url\":\"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Patch\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\",\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T01:20:57.038Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-3703\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-16T17:26:06.575715Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-16T17:26:08.249Z\"}}], \"cna\": {\"title\": \"ETIC Telecom Remote Access Server Insufficient Verification of Data Authenticity\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Haviv Vaizman, Hay Mizrachi, Alik Koldobsky, Ofir Manzur, and Nikolay Sokolik of OTORIO reported these vulnerabilities to CISA\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 7.6, \"attackVector\": \"ADJACENT_NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"ETIC Telecom\", \"product\": \"Remote Access Server (RAS)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"4.5.0\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"ETIC Telecom recommends updating the firmware of the affected devices to the following versions:\\n\\n\\n  *  ETIC Telecom RAS:  version 4.7.0 or later https://www.etictelecom.com/en/softwares-download/ \\n\\n\\n\\n\\nFor the installed devices, ETIC Telecom recommends:\\n\\n  *  For all firmware versions 4.7.0 and above, there is a code signature verification for firmware packages. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify: (1) That the downloaded firmware comes from a trusted source (ETIC Telecom web site), and (2) The hash of the firmware files.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eETIC Telecom recommends updating the firmware of the affected devices to the following versions:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003e\u003cp\u003eETIC Telecom RAS: \u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://www.etictelecom.com/en/softwares-download/\\\"\u003eversion 4.7.0 or later\u003c/a\u003e\u003c/p\u003e\u003c/li\u003e\u003c/ul\u003e\u003cp\u003eFor the installed devices, ETIC Telecom recommends:\u003c/p\u003e\u003cul\u003e\u003cli\u003eFor all firmware versions 4.7.0 and above, there is a code signature verification for firmware packages. For versions prior to 4.7.0, to reduce the attack surface, we advise the user to verify: (1) That the downloaded firmware comes from a trusted source (ETIC Telecom web site), and (2) The hash of the firmware files.\u003c/li\u003e\u003c/ul\u003e\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"datePublic\": \"2022-11-03T06:00:00.000Z\", \"references\": [{\"url\": \"https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.0.9\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eAll versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior\\u2019s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-345\", \"description\": \"CWE-345 Insufficient Verification of Data Authenticity\"}]}], \"providerMetadata\": {\"orgId\": \"7d14cffa-0d7d-4270-9dc0-52cabd5a23a6\", \"shortName\": \"icscert\", \"dateUpdated\": \"2023-08-23T16:11:43.290Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2022-3703\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-16T17:43:14.326Z\", \"dateReserved\": \"2022-10-26T00:00:00.000Z\", \"assignerOrgId\": \"7d14cffa-0d7d-4270-9dc0-52cabd5a23a6\", \"datePublished\": \"2022-11-10T21:32:01.836Z\", \"assignerShortName\": \"icscert\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.