4 matches found
CVE-2019-7746
JioFi 4 jmr1140 AmtelJMR1140R12.07 devices allow remote attackers to obtain an admin token by making a /cgi-bin/qcmapauth type=getuser request and then reading the token field. This token value can then be used to change the Wi-Fi password or perform a factory reset...
CVE-2019-7746
JioFi 4 jmr1140 AmtelJMR1140R12.07 devices allow remote attackers to obtain an admin token by making a /cgi-bin/qcmapauth type=getuser request and then reading the token field. This token value can then be used to change the Wi-Fi password or perform a factory reset...
CVE-2019-7746
CVE-2019-7746 affects JioFi 4 (JMR1140 Amtel_JMR1140_R12.07). The connected records confirm a token disclosure vulnerability via a CSRF-style flow: an attacker can trigger a /cgi-bin/qcmap_auth?action=getuser request and read the admin token from the response, enabling changes to the Wi‑Fi passwo...
Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - CSRF (Admin Token Disclosure) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Jiofi 4 JMR 1140 CSRF To Leak Admin Tokens to change wifi Password or Factory Reset Router Exploit Author: Ronnie T Baby Contact:https://www.linkedin.com/in/ronnietbaby Vendor Homepage: www.jio.com Hardware Link:...