2 matches found
CVE-2016-10309
In the GUI of Ceragon FibeAir IP-10 before 7.2.0 devices, a remote attacker can bypass authentication by adding an ALBATROSS cookie with the value 0-4-11 to their browser...
CVE-2016-10309
CVE-2016-10309 affects Ceragon FibeAir IP-10 devices with firmware older than 7.2.0. A remote attacker can bypass GUI authentication by sending a browser cookie named ALBATROSS with value 0-4-11, enabling access without credentials. NVD CVSS: 3.0/9.8 (CRITICAL; NETWORK, LOW attack complexity, no ...