5 matches found
CVE-2025-3759
Endpoint /cgi-bin-igd/netcoreset.cgi which is used for changing device configuration is accessible without authentication. This poses a significant security threat allowing for e.g: administrator account hijacking or AP password changing. The vendor was contacted early about this disclosure but d...
CVE-2025-3759
creationtimestamp| type| source ---|---|--- 2025-05-08 12:31:18+00:00| seen| Telegram/60cT2wlrThpaI2p205p7MoAi0oA9icyTsBVXTnXIGE3EPI 2025-05-08 12:31:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lonw6bewky2j 2025-05-08 13:26:01+00:00| seen| https://t.me/cvedetector/24813...
CVE-2025-3759
Endpoint /cgi-bin-igd/netcoreset.cgi which is used for changing device configuration is accessible without authentication. This poses a significant security threat allowing for e.g: administrator account hijacking or AP password changing. The vendor was contacted early about this disclosure but d...
CVE-2025-3759 Missing Authentication for Changing Device Configuration in WF2220
Endpoint /cgi-bin-igd/netcoreset.cgi which is used for changing device configuration is accessible without authentication. This poses a significant security threat allowing for e.g: administrator account hijacking or AP password changing. The vendor was contacted early about this disclosure but d...
CVE-2025-3759 Missing Authentication for Changing Device Configuration in WF2220
Endpoint /cgi-bin-igd/netcoreset.cgi which is used for changing device configuration is accessible without authentication. This poses a significant security threat allowing for e.g: administrator account hijacking or AP password changing. The vendor was contacted early about this disclosure but d...