Vulnerabilities > CVE-2017-16778 - Incorrect Authorization vulnerability in Fermax Outdoor Panel Firmware

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

fermax

CWE-863

NVD

Published: 2019-12-24

Updated: 2020-01-08

Summary

An access control weakness in the DTMF tone receiver of Fermax Outdoor Panel allows physical attackers to inject a Dual-Tone-Multi-Frequency (DTMF) tone to invoke an access grant that would allow physical access to a restricted floor/level. By design, only a residential unit owner may allow such an access grant. However, due to incorrect access control, an attacker could inject it via the speaker unit to perform an access grant to gain unauthorized access, as demonstrated by a loud DTMF tone representing '1' and a long '#' (697 Hz and 1209 Hz, followed by 941 Hz and 1477 Hz).

Vulnerable Configurations

Part	Description	Count
OS	Fermax Fermax Outdoor Panel Firmware -	1
Hardware	Fermax Fermax Outdoor Panel -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://github.com/breaktoprotect/CVE-2017-16778-Intercom-DTMF-Injection