CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
81.1%
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to the device by performing an administrator password change on the device via a crafted POST request.
Vendor | Product | Version | CPE |
---|---|---|---|
greenpacket | ox350_firmware | - | cpe:2.3:o:greenpacket:ox350_firmware:-:*:*:*:*:*:*:* |
greenpacket | ox350 | - | cpe:2.3:h:greenpacket:ox350:-:*:*:*:*:*:*:* |
huawei | bm2022_firmware | - | cpe:2.3:o:huawei:bm2022_firmware:-:*:*:*:*:*:*:* |
huawei | bm2022 | - | cpe:2.3:h:huawei:bm2022:-:*:*:*:*:*:*:* |
huawei | hes-309m_firmware | - | cpe:2.3:o:huawei:hes-309m_firmware:-:*:*:*:*:*:*:* |
huawei | hes-309m | - | cpe:2.3:h:huawei:hes-309m:-:*:*:*:*:*:*:* |
huawei | hes-319m_firmware | - | cpe:2.3:o:huawei:hes-319m_firmware:-:*:*:*:*:*:*:* |
huawei | hes-319m | - | cpe:2.3:h:huawei:hes-319m:-:*:*:*:*:*:*:* |
huawei | hes-319m2w_firmware | - | cpe:2.3:o:huawei:hes-319m2w_firmware:-:*:*:*:*:*:*:* |
huawei | hes-319m2w | - | cpe:2.3:h:huawei:hes-319m2w:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
81.1%