RSS   Vulnerabilities for 'Wa3002g4 firmware'   RSS

2017-09-17
 
CVE-2017-14243

CWE-287
 

 
An authentication bypass vulnerability on UTStar WA3002G4 ADSL Broadband Modem WA3002G4-0021.01 devices allows attackers to directly access administrative settings and obtain cleartext credentials from HTML source, as demonstrated by info.cgi, upload.cgi, backupsettings.cgi, pppoe.cgi, resetrouter.cgi, and password.cgi.

 


Copyright 2024, cxsecurity.com

 

Back to Top