Описание
The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the "Web Management via WAN" setting, which allows remote attackers to bypass intended access restrictions via HTTP requests.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:satechi:smart_travel_router:1.5:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00171
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the "Web Management via WAN" setting, which allows remote attackers to bypass intended access restrictions via HTTP requests.
EPSS
Процентиль: 39%
0.00171
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-264