CVE-2020-21995 – Inim Electronics Smartliving SmartLAN/G/SI devi... (How to Fix)

Q: How do I fix CVE-2020-21995?

1. Contact Inim Electronics for firmware updates or security guidance. 2. If updates exist, download from official vendor sources. 3. Apply firmware update following vendor instructions.

Q: What is the severity of CVE-2020-21995?

CVE-2020-21995 has a CVSS score of 9.8 (CRITICAL). Inim Electronics Smartliving SmartLAN/G/SI devices up to version 6.x use hardcoded default credentials, allowing attackers to gain Telnet, SSH, and FTP access. This affects all systems running vulnerable firmware versions. Attackers can fully compromise affected devices using these known credentials.

📋 TL;DR

Inim Electronics Smartliving SmartLAN/G/SI devices up to version 6.x use hardcoded default credentials, allowing attackers to gain Telnet, SSH, and FTP access. This affects all systems running vulnerable firmware versions. Attackers can fully compromise affected devices using these known credentials.

💻 Affected Systems

Products:

Inim Electronics Smartliving SmartLAN/G/SI

Versions: <= 6.x

Operating Systems: Embedded firmware

Default Config Vulnerable: ⚠️ Yes

Notes: All devices with default configuration are vulnerable. Custom configurations may still be vulnerable if credentials weren't changed.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise allowing attackers to install malware, pivot to internal networks, disrupt operations, or use devices for botnets.

🟠

Likely Case

Unauthorized access leading to data theft, configuration changes, service disruption, and lateral movement within networks.

🟢

If Mitigated

Limited impact if devices are isolated, credentials changed, or access controls prevent exploitation.

🌐 Internet-Facing: HIGH - Directly exploitable from internet if devices are exposed, requiring only credential knowledge.

🏢 Internal Only: HIGH - Internal attackers or malware can easily exploit this using default credentials.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires only knowledge of default credentials. Public exploit code demonstrates access methods.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not publicly available

Restart Required: No

Instructions:

1. Contact Inim Electronics for firmware updates or security guidance. 2. If updates exist, download from official vendor sources. 3. Apply firmware update following vendor instructions.

🔧 Temporary Workarounds

Change Default Credentials

all

Immediately change all default Telnet, SSH, and FTP credentials to strong, unique passwords.

telnet <device_ip> (login with default creds)
passwd (change password)
Repeat for SSH and FTP services if accessible

Disable Unnecessary Services

all

Disable Telnet, SSH, and FTP services if not required for operations.

Check device configuration interface for service management
Disable Telnet/SSH/FTP if possible

🧯 If You Can't Patch

Network segmentation: Isolate affected devices in separate VLANs with strict firewall rules.
Access control: Implement IP whitelisting for management interfaces and disable external access.

🔍 How to Verify

Check if Vulnerable:

Attempt to connect via Telnet/SSH/FTP using known default credentials (check exploit references). Successful login indicates vulnerability.

Check Version:

Check device web interface or use vendor-specific commands to display firmware version.

Verify Fix Applied:

Verify default credentials no longer work and new strong credentials are required. Confirm services are disabled or properly secured.

📡 Detection & Monitoring

Log Indicators:

Failed authentication attempts followed by successful logins with default usernames
Multiple Telnet/SSH/FTP connections from unusual sources

Network Indicators:

Telnet/SSH/FTP traffic to device management ports from unauthorized IPs
Unusual outbound connections from device after compromise

SIEM Query:

source="device_logs" (event_type="authentication" AND (username="default" OR username="admin") AND result="success")

📊 Metadata

CVE ID: CVE-2020-21995

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-798

Published: April 29, 2021

Last Updated: November 21, 2024

🔗 References

https://www.exploit-db.com/exploits/47763 Third Party Advisory,VDB Entry
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5546.php Third Party Advisory
https://www.exploit-db.com/exploits/47763 Third Party Advisory,VDB Entry
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5546.php Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-21995, you might also want to check these: