Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to reset the admin password via the /ConfigWizard/ChangePwd.esp?2admin URL (Attackers can login using the "admin" username with password "admin" after a successful attack).
References
Link | Resource |
---|---|
https://vulncode.com/advisory/CVE-2018-14078 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-08-20T20:00:00
Updated: 2018-08-21T17:57:01
Reserved: 2018-07-15T00:00:00
Link: CVE-2018-14078
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-08-20T20:29:02.127
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-14078
JSON object: View
Redhat Information
No data.
CWE