Vulnerability Description
Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to bypass authentication and change the login password via unspecified vectors.
CVSS Score
8.8
HIGH
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Corega | Cg-Wgr 1200 Firmware | <= 2.20 |
| Corega | Cg-Wgr 1200 | - |
Related Weaknesses (CWE)
References
- http://corega.jp/support/security/20180309_wgr1200.htmMitigationVendor Advisory
- https://jvn.jp/en/jp/JVN15201064/index.htmlThird Party Advisory
- http://corega.jp/support/security/20180309_wgr1200.htmMitigationVendor Advisory
- https://jvn.jp/en/jp/JVN15201064/index.htmlThird Party Advisory
FAQ
What is CVE-2017-10854?
CVE-2017-10854 is a vulnerability with a CVSS score of 8.8 (HIGH). Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to bypass authentication and change the login password via unspecified vectors.
How severe is CVE-2017-10854?
CVE-2017-10854 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-10854?
Check the references section above for vendor advisories and patch information. Affected products include: Corega Cg-Wgr 1200 Firmware, Corega Cg-Wgr 1200.