Web page which "wizardpwd.asp" ALLNET Router model WR0500AC is prone to Authorization bypass vulnerability – the password, located at "admin" allows changing the http[s]://wizardpwd.asp/cgi-bin. Does not validate the user's identity and can be accessed publicly.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| cna@cyber.gov.il | 5.9 | MEDIUM | CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L | 1.7 | 3.7 |
| nvd@nist.gov | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 3.9 | 5.9 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| allnet | all-wr0500ac_firmware | - |
ALLNET ALL-RUT22GW v3.3.8 was discovered to store hardcoded credentials in the libicos.so library.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| allnet | all-rut22gw_firmware | 3.3.8 |
ALLNET ALL-RUT22GW v3.3.8 was discovered to contain an OS command injection vulnerability via the command parameter in the popen.cgi endpoint.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| allnet | all-rut22gw_firmware | 3.3.8 |