CVE-2018-11094 Information

Description

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh /goform/updateWPS /goform/RebootSystem and /goform/vpnBasicSettings do not require authentication. For example when an HTTP POST request is made to /cgi-bin/ExportSettings.sh the username password and other details are retrieved.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://blog.kos-lab.com/Hello-World/ https://www.exploit-db.com/exploits/44637/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8