Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2018/05/17 12:0 a.m.43 views

Intelbras NCLOUD 300 1.0 Authentication Bypass

coding: utf-8 Exploit Title: Intelbras NCloud Authentication bypass Date: 16/05/2018 Exploit Author: Pedro Aguiar - [email protected] Vendor Homepage: http://www.intelbras.com.br/ Software Link: http://www.intelbras.com.br/empresarial/wi-fi/para-sua-casa/roteadores/ncloud Version: 1.0 Test...

0.4AI score0.35573EPSS
Exploits5
Prion
Prion
added 2018/05/15 7:29 p.m.13 views

Authentication flaw

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

10CVSS9.4AI score0.35573EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2018/05/15 7:0 p.m.25 views

CVE-2018-11094

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

9.5AI score0.35573EPSS
Exploits5References2
CVE
CVE
added 2018/05/15 7:0 p.m.57 views

CVE-2018-11094

CVE-2018-11094 — Intelbras NCLOUD 300 1.0 Authentication bypass . Public sources describe endpoints that do not require authentication: /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings. An HTTP POST to /cgi-bin/ExportSettings.sh can disclose the we...

10CVSS9.3AI score0.35573EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder