605
VMScore

CVE-2018-12456

Published: 10/10/2018 Updated: 28/11/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing malicious users to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

intelbras nplug_firmware 1.0.0.14

Exploits

NPLUG Wireless Repeater version 10014 suffers from authentication bypass, cross site request forgery, and cross site scripting vulnerabilities ...