CVE-2018-13110

Sažetak

All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previously disabled by the ISP, escalate their privileges, and perform further attacks.

Reference

http://packetstormsecurity.com/files/148430/ADB-Group-Manipulation-Privilege-Escalation.html
http://seclists.org/fulldisclosure/2018/Jul/19
http://www.securityfocus.com/archive/1/542118/100/0/threaded
https://www.exploit-db.com/exploits/44984/
https://www.sec-consult.com/en/blog/advisories/privilege-escalation-via-linux-group-manipulation-in-all-adb-broadband-gateways-routers/

CVSS

Base:	8.5
Impact:	10.0
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

03-10-2019 - 00:03

Objavljeno

06-07-2018 - 14:29