Researchers have discovered multiple vulnerabilities in Robustel’s R1510 industrial cellular VPN router. The nine vulnerabilities that were found could have led to web server crashes and arbitrary code execution, among other threats, said the threat intelligence team of Cisco Talos. Some of the vulnerabilities could have also allowed remote access to cybercriminals in injecting operating system codes.
The researchers alerted the company and worked together to make sure that these vulnerabilities were patched. Users were urged to update their systems to avoid being exposed to vulnerabilities leading to data loss or system crashes.
The researchers gave the vulnerabilities a score of 9.1 out of 10. A score over 9 indicated that these were critical software vulnerabilities in nature and could have had a severe impact on the device’s security.
Five operating system command injection vulnerabilities were found in the router. These vulnerabilities could have been triggered by a cybercriminal by sending a malicious network request to the targeted device. The vulnerabilities are
- TALOS-2022-1578 (CVE-2022-34850)
- TALOS-2022-1577 (CVE-2022-33150)
- TALOS-2022-1576 (CVE-2022-32765)
- TALOS-2022-1573 (CVE-2022-33325 – CVE-2022-33329)
- TALOS-2022-1572 (CVE-2022-33312 – CVE-2022-33314)
- TALOS-2022-1580 (CVE-2022-34845)
- TALOS-2022-1570 (CVE-2022-32585)
- TALOS-2022-1575 (CVE-2022-35261 – CVE-2022-35271) and
- TALOS-2022-1571 (CVE-2022-28127)
The vulnerabilities CVE-2022-33312, CVE-2022-33313, and CVE-2022-33314 could have been used to execute an arbitrary command. Executing arbitrary codes offer remote access to hackers who can use this right to make any changes to the device. CVE-2022-32585 also offered the same capabilities to hackers.
CVE-2022-28127 could have led to data removal using Robustel’s R1510 3.3.0. router. A hacker could have exploited this vulnerability to send several requests in order to trigger this vulnerability and delete any data. The vulnerabilities could have been exploited to launch Denial-of-Service (DoS) attacks which have the capability to shut the device down. DDoS attacks also make the device inaccessible to its users.
The Chinese manufacturer of IoT and M2M market solutions, Robustel, provides routers and cellular modems, among other digital solutions. Robustel R1510 offers Wi-Fi, WAN, and 4G connectivity. The router in question uses cloud management platforms to control other connected devices and open VPN tunneling.