CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
76.4%
The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the “Web Management via WAN” setting, which allows remote attackers to bypass intended access restrictions via HTTP requests.
Vendor | Product | Version | CPE |
---|---|---|---|
satechi | smart_travel_router | 1.5 | cpe:2.3:h:satechi:smart_travel_router:1.5:*:*:*:*:*:*:* |