CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
73.8%
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.
Vendor | Product | Version | CPE |
---|---|---|---|
ip3_networks | ip3_netaccess | * | cpe:2.3:h:ip3_networks:ip3_netaccess:*:*:*:*:*:*:*:* |
ip3_networks | ip3_netaccess_-_hospitality | * | cpe:2.3:h:ip3_networks:ip3_netaccess_-_hospitality:*:*:*:*:*:*:*:* |
ip3_networks | ip3_netaccess_-_wireless_hotspots | * | cpe:2.3:h:ip3_networks:ip3_netaccess_-_wireless_hotspots:*:*:*:*:*:*:*:* |