Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
725
VMScore

CVE-2018-13108

Published: 06/07/2018 Updated: 03/10/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Adbglobal

Vulnerability Summary

All ADB broadband gateways / routers based on the Epicentro platform are affected by a local root jailbreak vulnerability where attackers are able to gain root access on the device, and extract further information such as sensitive configuration data of the ISP (e.g., VoIP credentials) or attack the internal network of the ISP.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

adbglobal dv2210_firmware -

adbglobal vv2220_firmware -

adbglobal vv5522_firmware -

adbglobal prg_av4202n_firmware -

Exploits

Exploit DB: ADB Broadband Gateways / Routers - Local Root Jailbreak
SEC Consult Vulnerability Lab Security Advisory < 20180704-0 > ======================================================================= title: Local root jailbreak via network file sharing flaw product: All ADB Broadband Gateways / Routers (based on Epicentro platform) vulnerable version: Hardware: ADB PRG AV4202N, DV2210, VV2220, VV5522, etc ...
Exploit DB: ADB Local Root Jailbreak
ADB broadband gateways and routers suffer from a local root jailbreak vulnerability via a network file sharing flaw Versions affected include ADB PRG AV4202N, DV2210, VV2220, and VV5522 ...

References

NVD-CWE-noinfohttps://www.sec-consult.com/en/blog/advisories/local-root-jailbreak-via-network-file-sharing-flaw-in-all-adb-broadband-gateways-routers/http://seclists.org/fulldisclosure/2018/Jul/17http://packetstormsecurity.com/files/148424/ADB-Local-Root-Jailbreak.htmlhttps://www.exploit-db.com/exploits/44983/http://www.securityfocus.com/archive/1/542117/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/44983/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook