CVE-2021-40859 – Auerswald / Multiple – Unspecified

January 18, 2022

CVE-2021-40859 is an unspecified vulnerability impacting multiple Auerswald COMpact 5500R devices. An exploit was observed in open source and a link to an exploit was shared in the underground.

Summary:

CVE-2021-40859 is an unspecified vulnerability impacting multiple Auerswald COMpact 5500R devices. An exploit was observed in open source and a link to an exploit was shared in the underground.

PoC Links(if available):

RedTeam Pentesting GmbH : Auerswald COMpact Multiple Backdoors –
https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-007/-auerswald-compact-multiple-backdoors

Known Counter Measures:

Auerswald addressed the vulnerability in a new firmware releases.

Links to patches(if available)

https://www.auerswald.de/en/product/compact-5500r

You may have missed

alerts

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

April 25, 2024
image

CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

April 25, 2024
hkcert

Cisco Products Multiple Vulnerabilities

April 25, 2024
HIBP Banner 1

T2 – 94,584 breached accounts

April 25, 2024
CISA Logo

CISA: CISA Releases Three Industrial Control Systems Advisories

April 25, 2024