VYPR
High severity8.1NVD Advisory· Published May 7, 2019· Updated Jun 17, 2026

CVE-2019-7746

CVE-2019-7746

Description

JioFi 4 jmr1140 Amtel_JMR1140_R12.07 devices allow remote attackers to obtain an admin token by making a /cgi-bin/qcmap_auth type=getuser request and then reading the token field. This token value can then be used to change the Wi-Fi password or perform a factory reset.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.