exploitDog

GHSA-g4fv-xpf4-c34v

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Due to the lack of firmware authentication in the upgrade process of T&W WIFI Repeater BE126 devices, an attacker can craft a malicious firmware and use it as an update.

Due to the lack of firmware authentication in the upgrade process of T&W WIFI Repeater BE126 devices, an attacker can craft a malicious firmware and use it as an update.

Ссылки

EPSS

Процентиль: 41%

0.00188

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2018-9232

CVSS3: 7.8

nvd

почти 8 лет назад

Due to the lack of firmware authentication in the upgrade process of T&W WIFI Repeater BE126 devices, an attacker can craft a malicious firmware and use it as an update.

EPSS

Процентиль: 41%

0.00188

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-287