Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2018-9248

Published: 04/04/2018 Updated: 21/05/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Vdsl2 Modem Hg 150-ub Firmware

Vulnerability Summary

FiberHome VDSL2 Modem HG 150-UB devices allow authentication bypass via a "Cookie: Name=0admin" header.

Vulnerable Product Search on Vulmon Subscribe to Product

fiberhome vdsl2_modem_hg_150-ub_firmware -

Exploits

Exploit DB: FiberHome VDSL2 Modem HG 150-UB - Authentication Bypass
# Exploit Title: FiberHome VDSL2 Modem HG 150-UB Authentication Bypass # Date: 04/03/2018 # Exploit Author: Noman Riffat # Vendor Homepage: wwwfiberhomecom/ # CVE : CVE-2018-9248, CVE-2018-9248 The vulnerability exists in plain text & hard coded cookie Using any cookie manager extension, an attacker can bypass login page by setting t ...

References

CWE-287https://gist.github.com/pak0s/cd7ac9c2ee659138816f92693d2df602https://www.exploit-db.com/exploits/44413/https://nvd.nist.govhttps://www.exploit-db.com/exploits/44413/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook