NPLUG
by Intelbras
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-12456 | 0.00 | — | 0.01 | Oct 10, 2018 | Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access. | |||
| CVE-2018-12455 | 0.00 | — | 0.05 | Oct 10, 2018 | Intelbras NPLUG 1.0.0.14 wireless repeater devices have a critical vulnerability that allows an attacker to authenticate in the web interface just by using "admin:" as the name of a cookie. | |||
| CVE-2018-17337 | 0.00 | — | 0.01 | Oct 10, 2018 | Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast. |
- CVE-2018-12456Oct 10, 2018risk 0.00cvss —epss 0.01
Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access.
- CVE-2018-12455Oct 10, 2018risk 0.00cvss —epss 0.05
Intelbras NPLUG 1.0.0.14 wireless repeater devices have a critical vulnerability that allows an attacker to authenticate in the web interface just by using "admin:" as the name of a cookie.
- CVE-2018-17337Oct 10, 2018risk 0.00cvss —epss 0.01
Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast.