Narda MITEQ Uplink Power Control Unit UPC2 Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Narda MITEQ Uplink Power Control Unit (UPC2) version 1.17. This vulnerability allows remote attackers to execute arbitrary actions through the web-based management interface by exploiting the lack of CSRF protection on several administrative endpoints. Attackers can manipulate configuration settings without the user's knowledge or consent.

Impact

Exploitation of this vulnerability allows attackers to change configuration parameters, potentially disrupting operations by mismanaging power levels in satellite communication systems. Such interference could lead to service outages or safety risks, all while remaining unnoticed by the user.

Reproduction

To reproduce this vulnerability, an authenticated user must be tricked into visiting a malicious webpage that sends a POST request to one of the vulnerable endpoints, such as '/system_setup.htm'. The request can be crafted to include specific configuration changes, such as altering network settings. Once the user interacts with the page, the request is sent automatically, exploiting the CSRF vulnerability.