RSS   Vulnerabilities for
'Medialink mwn-wapr300n firmware'
   RSS

2015-12-31
 
CVE-2015-5996

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 allows remote attackers to hijack the authentication of arbitrary users.

 
 
CVE-2015-5995

 

 
Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header.

 
 
CVE-2015-5994

 

 
The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote attackers to obtain administrative privileges by leveraging a Wi-Fi session.

 


Copyright 2024, cxsecurity.com

 

Back to Top