Описание
NuCom 11N Wireless Router 5.07.90 contains a privilege escalation vulnerability that allows non-privileged users to access administrative credentials through the configuration backup endpoint. Attackers can send a crafted HTTP GET request to the backup configuration page with a specific cookie to retrieve and decode the admin password in Base64 format.
EPSS
Процентиль: 24%
0.00078
Низкий
7.5 High
CVSS3
Дефекты
CWE-522
Связанные уязвимости
CVSS3: 7.5
github
около 1 месяца назад
NuCom 11N Wireless Router 5.07.90 contains a privilege escalation vulnerability that allows non-privileged users to access administrative credentials through the configuration backup endpoint. Attackers can send a crafted HTTP GET request to the backup configuration page with a specific cookie to retrieve and decode the admin password in Base64 format.
EPSS
Процентиль: 24%
0.00078
Низкий
7.5 High
CVSS3
Дефекты
CWE-522