FiberHome VDSL2 Modem HG 150-UB devices allow authentication bypass by ignoring the parent.location='login.html' JavaScript code in the response to an unauthenticated request.
References
Link | Resource |
---|---|
https://gist.github.com/pak0s/cd7ac9c2ee659138816f92693d2df602 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-04-04T15:00:00
Updated: 2018-04-04T14:57:01
Reserved: 2018-04-03T00:00:00
Link: CVE-2018-9249
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-04-04T15:29:00.533
Modified: 2018-05-21T13:15:55.267
Link: CVE-2018-9249
JSON object: View
Redhat Information
No data.
CWE