7 matches found
CVE-2018-25147
CVE-2018-25147 concerns Microhard Systems IPn4G 1.1.0. The vulnerability arises from hardcoded default credentials that cannot be changed via normal gateway operations. Exploitation would allow an attacker to gain unauthorized root-level access by logging in with predefined username/password comb...
CVE-2018-25149
CVE-2018-25149 affects Microhard Systems IPn4G 1.1.0. The vulnerability is a cross-site request forgery (CSRF) in the device’s web interface that allows an attacker to induce administrative actions without user consent by tricking an authenticated user into loading a malicious page. Documented im...
CVE-2018-25146
CVE-2018-25146 affects Microhard Systems IPn4G v1.1.0. Multiple connected docs confirm an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes by using a hidden feature to send arbitrary signals to kill background processes and system serv...
CVE-2018-25145
The CVE concerns Microhard Systems IPn4G 1.1.0, where an authenticated user can download sensitive configuration files via a configuration-disclosure vulnerability. Affected component is the device’s configuration storage accessible from multiple directories including '/www', '/etc/m_cli/', and '...
CVE-2018-25144
The CVE-2018-25144 issue affects Microhard Systems IPn4G 1.1.0. A vulnerability in the hidden system-editor.sh script allows authenticated attackers to read, modify, or delete arbitrary files by abusing unsanitized parameters (path, savefile, edit, delfile) via GET/POST requests. Exploitation det...
CVE-2018-25148
CVE-2018-25148 affects Microhard Systems IPn4G 1.1.0. The admin interface contains multiple authenticated remote code execution vulnerabilities that allow an authenticated attacker to create crontab jobs and modify system startup scripts. Attackers can execute arbitrary commands with root privile...
CVE-2018-25143
CVE-2018-25143 affects Microhard Systems IPn4G 1.1.0. A service vulnerability enables authenticated users to turn on a restricted SSH shell via the default user 'msshc'. An attacker can abuse a custom 'ping' command within the NcFTP environment to escape the restricted shell and execute commands ...