8.5

CVE-2018-13110

Exploit
All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previously disabled by the ISP, escalate their privileges, and perform further attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdbglobalDv2210 Firmware Version-
   AdbglobalDv2210 Version-
AdbglobalVv2220 Firmware Version-
   AdbglobalVv2220 Version-
AdbglobalVv5522 Firmware Version-
   AdbglobalVv5522 Version-
AdbglobalPrg Av4202n Firmware Version-
   AdbglobalPrg Av4202n Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.49% 0.929
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 1.6 5.9
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 8.5 6.8 10
AV:N/AC:M/Au:S/C:C/I:C/A:C
CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

http://packetstormsecurity.com/files/148430/ADB-Group-Manipulation-Privilege-Escalation.html
Third Party Advisory
Exploit
VDB Entry
http://seclists.org/fulldisclosure/2018/Jul/19
Third Party Advisory
Exploit
Mailing List
http://www.securityfocus.com/archive/1/542118/100/0/threaded
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/44984/
Third Party Advisory
Exploit
VDB Entry
https://www.sec-consult.com/en/blog/advisories/privilege-escalation-via-linux-group-manipulation-in-all-adb-broadband-gateways-routers/
Third Party Advisory
Exploit