Critical severity9.8NVD Advisory· Published May 15, 2018· Updated Jun 17, 2026
CVE-2018-11094
CVE-2018-11094
Description
An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and other details are retrieved.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 1.0
Patches
Vulnerability mechanics
References
2- blog.kos-lab.com/Hello-World/nvdExploitThird Party Advisory
- www.exploit-db.com/exploits/44637/nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.