GHSA-w743-79pp-vx63 · 深刻度: high — FastNetMon Community Edition through 1.2.9 exposes a gRPC API server on port 50052 with no...
FastNetMon Community Edition through 1.2.9 exposes a gRPC API server on port 50052 with no authentication mechanism. The server is initialized with grpc::InsecureServerCredentials() (src/fastnetmon.cpp line 477) and a source code comment explicitly acknowledges 'Listen on the given address without any authentication mechanism.' None of the RPC methods in src/api.cpp (ExecuteBan, ExecuteUnBan, GetBanlist, GetTotalTrafficCounters, etc.) perform any credential verification. The ExecuteBan and ExecuteUnBan methods trigger security-critical actions: BGP route announcements that can blackhole network traffic, and execution of external notification scripts via popen(). An attacker with local network access can ban arbitrary IP addresses (causing denial of service to legitimate traffic), unban active attacks (disabling DDoS mitigation), and trigger script execution. There is also no role-based access control separating read-only monitoring from destructive administrative operations.
総合評価: CVE-2026-48692 は低リスク(37.5/100)。CVSS 深刻度は高。悪用される可能性が高い(EPSS 0.23%、14 パーセンタイル) 推奨対応: 悪用情報と EPSS の推移を監視し、必要に応じて優先度を見直してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.03% | 0.23% | +0.21% |
| 2 | 2026-05-27 | — | 0.03% | — |
EPSS の全履歴 (全 2 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 8.1 | 3.1 | HIGH |
|
2.8 | 5.2 | [email protected] |
| 8.1 | 3.1 | HIGH |
|
2.8 | 5.2 | 134c704f-9b21-4f2e-91b3-4a467353bcc0 |
GHSA-w743-79pp-vx63 · 深刻度: high — FastNetMon Community Edition through 1.2.9 exposes a gRPC API server on port 50052 with no...
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
unimportant | CVE-2026-48692 unimportant priority: Debian including 1 source packages (fastnetmon), 4 status rows across 4 suites (bookworm, forky, sid, trixie): open 4. | https://security-tracker.debian.org/tracker/CVE-2026-48692 |
ubuntu
|
medium | CVE-2026-48692 medium priority: Ubuntu including 1 source packages (fastnetmon), 7 status rows across 7 suites (bionic, focal, jammy, noble, questing, resolute, upstream): needs-triage 6, DNE 1. | https://ubuntu.com/security/CVE-2026-48692 |
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| pavel-odintsov | fastnetmon | <= 1.2.9 | cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:* |