RSS   Vulnerabilities for 'Cipcamptiwl web firmware'   RSS

2018-01-30
 
CVE-2018-6408

CWE-352
 

 
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account.

 
 
CVE-2018-6407

CWE-20
 

 
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device.

 

 >>> Vendor: Conceptronic 7 Products
Cadslr1 adsl router
C54apm
Cipcamptiwl 1.0 firmware
Cipcamptiwl
C54apm firmware
Cipcamptiwl firmware
Cipcamptiwl web firmware


Copyright 2024, cxsecurity.com

 

Back to Top