CVE-2017-14942

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/09/2017
Last modified:
20/04/2025

Description

Intelbras WRN 150 devices allow remote attackers to read the configuration file, and consequently bypass authentication, via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg containing an admin:language=pt cookie.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:intelbras:wrn_150_firmware:1.0.1:*:*:*:*:*:*:*
cpe:2.3:h:intelbras:wrn_150:-:*:*:*:*:*:*:*