Lucene search
+L

7 matches found

nvd
nvd
added 2020/04/21 1:15 p.m.28 views

CVE-2020-11968

In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step for settin...

7.5CVSS7.5AI score0.02593EPSS
Exploits3References4
osv
osv
added 2020/04/21 1:15 p.m.4 views

CVE-2020-11968

In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step for settin...

7.5CVSS7.1AI score0.02593EPSS
Exploits3References4
cve
cve
added 2020/04/21 12:7 p.m.242 views

CVE-2020-11968

CVE-2020-11968 affects IQrouter web-panel up to version 3.3.1, where an incorrect access control allows remote readers to view system logs. The core issue is access control weakness in the web UI, not an execution bug by default. Public notes consistently mention this can occur on brand-new netwo...

7.5CVSS7.5AI score0.02593EPSS
In wildExploits3References4Affected Software1
cvelist
cvelist
added 2020/04/21 12:7 p.m.30 views

CVE-2020-11968

In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step for settin...

7.7AI score0.02593EPSS
Exploits3References4
attackerkb
attackerkb
added 2020/04/21 12:0 a.m.76 views

CVE-2020-11968

In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step for settin...

7.5CVSS7.5AI score0.02593EPSS
In wildExploits3References6
exploitdb
exploitdb
added 2020/04/21 12:0 a.m.1073 views

IQrouter 3.3.1 Firmware - Remote Code Execution

Exploit Title: IQrouter 3.3.1 Firmware - Remote Code Execution Date: 2020-04-21 Exploit Author: drakylar Vendor Homepage: https://evenroute.com/ Software Link: https://evenroute.com/iqrouter Version: IQrouter firmware up to 3.3.1 Tested on: IQrouter firmware 3.3.1 CVE : N/A !/usr/bin/env python3...

9.8CVSS8.6AI score0.03189EPSS
Exploits3
zdt
zdt
added 2020/04/21 12:0 a.m.112 views

IQrouter 3.3.1 Firmware - Remote Code Execution Exploit

Exploit for hardware platform in category web applications Exploit Title: IQrouter 3.3.1 Firmware - Remote Code Execution Exploit Author: drakylar Vendor Homepage: https://evenroute.com/ Software Link: https://evenroute.com/iqrouter Version: IQrouter firmware up to 3.3.1 Tested on: IQrouter...

9CVSS0.4AI score0.03189EPSS
Exploits3
Rows per page
Query Builder