CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
88.1%
All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previously disabled by the ISP, escalate their privileges, and perform further attacks.
Vendor | Product | Version | CPE |
---|---|---|---|
adbglobal | dv2210_firmware | - | cpe:2.3:o:adbglobal:dv2210_firmware:-:*:*:*:*:*:*:* |
adbglobal | dv2210 | - | cpe:2.3:h:adbglobal:dv2210:-:*:*:*:*:*:*:* |
adbglobal | vv2220_firmware | - | cpe:2.3:o:adbglobal:vv2220_firmware:-:*:*:*:*:*:*:* |
adbglobal | vv2220 | - | cpe:2.3:h:adbglobal:vv2220:-:*:*:*:*:*:*:* |
adbglobal | vv5522_firmware | - | cpe:2.3:o:adbglobal:vv5522_firmware:-:*:*:*:*:*:*:* |
adbglobal | vv5522 | - | cpe:2.3:h:adbglobal:vv5522:-:*:*:*:*:*:*:* |
adbglobal | prg_av4202n_firmware | - | cpe:2.3:o:adbglobal:prg_av4202n_firmware:-:*:*:*:*:*:*:* |
adbglobal | prg_av4202n | - | cpe:2.3:h:adbglobal:prg_av4202n:-:*:*:*:*:*:*:* |
packetstormsecurity.com/files/148430/ADB-Group-Manipulation-Privilege-Escalation.html
seclists.org/fulldisclosure/2018/Jul/19
www.securityfocus.com/archive/1/542118/100/0/threaded
www.exploit-db.com/exploits/44984/
www.sec-consult.com/en/blog/advisories/privilege-escalation-via-linux-group-manipulation-in-all-adb-broadband-gateways-routers/
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
88.1%