Unrated severityNVD Advisory· Published May 2, 2018· Updated Aug 5, 2024

CVE-2018-10578

Description

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15, and AP300 devices with firmware before 2.0.0.10. Incorrect validation of the "old password" field in the change password form allows an attacker to bypass validation of this field.

Affected products

WatchGuard/AP100llm-fuzzy
Range: <=1.2.9.15
WatchGuard/AP102llm-fuzzy
Range: <=1.2.9.15
WatchGuard/AP200llm-fuzzy
Range: <=1.2.9.15
WatchGuard/AP300llm-fuzzy
Range: <=2.0.0.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2018/May/12mitremailing-listx_refsource_FULLDISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000