ByteOS Network

wi2be

Source -

NVD

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2018-14077

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-0.33% / 55.47%

7 Day CHG~0.00%

Published-20 Aug, 2018 | 20:00

Updated-05 Aug, 2024 | 09:21

Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to backup the device configuration via a direct request to /Maintenance/configfile.cfg.

Vendor-wi2be n/a

Product-smart_hp_wmt n/a

CVE-2018-14078

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-9.8||CRITICAL

EPSS-1.54% / 80.65%

7 Day CHG~0.00%

Published-20 Aug, 2018 | 20:00

Updated-05 Aug, 2024 | 09:21

Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to reset the admin password via the /ConfigWizard/ChangePwd.esp?2admin URL (Attackers can login using the "admin" username with password "admin" after a successful attack).

Vendor-wi2be n/a

Product-smart_hp_wmt n/a

CWE ID-CWE-287

Improper Authentication

CVE-2018-14079

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-0.33% / 55.47%

7 Day CHG~0.00%

Published-20 Aug, 2018 | 20:00

Updated-05 Aug, 2024 | 09:21

Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to obtain sensitive information via /Status/SystemStatusRpm.esp.

Vendor-wi2be n/a

Product-smart_hp smart_hp_wmt n/a

CWE ID-CWE-200

Exposure of Sensitive Information to an Unauthorized Actor