ID CVE-2018-15350
Summary Router Default Credentials in Kraftway 24F2XG Router firmware version 3.5.30.1118 allow remote attackers to get privileged access to the router.
References
Vulnerable Configurations
  • cpe:2.3:o:kraftway:24f2xg_router_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:kraftway:24f2xg_router_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:kraftway:24f2xg_router:-:*:*:*:*:*:*:*
    cpe:2.3:h:kraftway:24f2xg_router:-:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE CWE-1188
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
misc https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-006-kraftway-24f2xg-router-default-credentials/
Last major update 03-10-2019 - 00:03
Published 17-08-2018 - 14:29
Last modified 03-10-2019 - 00:03
Back to Top