7.8

CVE-2018-13108

Exploit

EPSS 1.58%
Veröffentlicht 06.07.2018 14:29:01
Zuletzt bearbeitet 21.11.2024 03:46:27
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

All ADB broadband gateways / routers based on the Epicentro platform are affected by a local root jailbreak vulnerability where attackers are able to gain root access on the device, and extract further information such as sensitive configuration data of the ISP (e.g., VoIP credentials) or attack the internal network of the ISP.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 8

NVD 4 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Adbglobal ≫ Dv2210 Firmware Version-

Adbglobal ≫ Dv2210 Version-

Adbglobal ≫ Vv2220 Firmware Version-

Adbglobal ≫ Vv2220 Version-

Adbglobal ≫ Vv5522 Firmware Version-

Adbglobal ≫ Vv5522 Version-

Adbglobal ≫ Prg Av4202n Firmware Version-

Adbglobal ≫ Prg Av4202n Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.58%	0.724

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://packetstormsecurity.com/files/148424/ADB-Local-Root-Jailbreak.html

Third Party Advisory

VDB Entry

http://seclists.org/fulldisclosure/2018/Jul/17

Third Party Advisory

Mailing List

http://www.securityfocus.com/archive/1/542117/100/0/threaded

https://www.exploit-db.com/exploits/44983/

Third Party Advisory

VDB Entry

https://www.sec-consult.com/en/blog/advisories/local-root-jailbreak-via-network-file-sharing-flaw-in-all-adb-broadband-gateways-routers/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2018-13108

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-13108

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-13108

EUVD