Vulnerabilities > CVE-2022-1318 - Information Exposure Through Discrepancy vulnerability in Carrier Hills Comnav Firmware 300219

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

carrier

CWE-203

NVD

Published: 2022-04-20

Updated: 2023-07-24

Summary

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if they can observe the traffic. This would be possible even if the traffic were encrypted, e.g., using WPA2, as the packet sizes would remain observable. The communication encryption scheme is theoretically sound, but is not strong enough for the level of protection required.

Vulnerable Configurations

Part	Description	Count
OS	Carrier Carrier Hills Comnav Firmware - Carrier Hills Comnav Firmware 3002-19	2
Hardware	Carrier Carrier Hills Comnav -	1

Common Weakness Enumeration (CWE)

CWE-203 - Information Exposure Through Discrepancy

References

https://www.corporate.carrier.com/Images/CARR-PSA-Hills-ComNav-002-1121_tcm558-149392.pdf