CVE-2024-22773

Опубликовано: 06 фев. 2024

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

Intelbras Action RF 1200 routers 1.2.2 and earlier and Action RG 1200 routers 2.1.7 and earlier expose the Password in Cookie resulting in Login Bypass.

Ссылки

https://medium.com/%40wagneralves_87750/poc-cve-2024-22773-febf0d3a5433
Exploit
https://www.intelbras.com/en/router-wi-fi-5-dual-band-ac-1200-action-rf-1200
https://www.intelbras.com/en/router-wi-fi-5-dual-band-ac-1200-with-giga-port-action-rg-1200
https://www.youtube.com/watch?v=-r0TWJq55DU&t=7s
Exploit
https://medium.com/%40wagneralves_87750/poc-cve-2024-22773-febf0d3a5433
Exploit
https://www.intelbras.com/en/router-wi-fi-5-dual-band-ac-1200-action-rf-1200
https://www.intelbras.com/en/router-wi-fi-5-dual-band-ac-1200-with-giga-port-action-rg-1200
https://www.youtube.com/watch?v=-r0TWJq55DU&t=7s
Exploit

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:intelbras:action_rf_1200_firmware:1.2.2:*:*:*:*:*:*:*

cpe:2.3:h:intelbras:action_rf_1200:-:*:*:*:*:*:*:*

EPSS

Процентиль: 27%

0.00098

Низкий

8.1 High

CVSS3

Дефекты

CWE-922

Связанные уязвимости

GHSA-c6f2-5665-5p8p