CVE-2018-12455

Intelbras NPLUG 1.0.0.14 wireless repeater devices have a critical vulnerability that allows an attacker to authenticate in the web interface just by using "admin:" as the name of a cookie.

Published : 2018-10-10 21:29 Updated : 2018-11-28 18:16

9.3
CVSS Score More info
Score 9.3 / 10
9.3
Vendor Product Version URI
Intelbras Nplug Firmware 1.0.0.14 cpe:/o:intelbras:nplug_firmware:1.0.0.14
  1. Intelbras (1) Search CVE
    1. Nplug Firmware (1) Search CVE
      1. 1.0.0.14

CWE

ID Name Description Links
CWE-287 Improper Authentication When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. CVE

Reference

History of changes

Date Event
2018-11-28 18:16
2018-10-10 21:29

New CVE