CVE-2017-14942
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/09/2017
Last modified:
20/04/2025
Description
Intelbras WRN 150 devices allow remote attackers to read the configuration file, and consequently bypass authentication, via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg containing an admin:language=pt cookie.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:intelbras:wrn_150_firmware:1.0.1:*:*:*:*:*:*:* | ||
cpe:2.3:h:intelbras:wrn_150:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page