1. Home
  2. CVE Database
  3. CVE-2017-6558
CRITICAL · 9.8

CVE-2017-6558

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router ...

Vulnerability Description

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router settings by reading the HTML source code of the password.cgi file.

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IballIb-Wra150N Firmware1.2.6
IballIb-Wra150N-

Related Weaknesses (CWE)

CWE-798

References

FAQ

What is CVE-2017-6558?

CVE-2017-6558 is a vulnerability with a CVSS score of 9.8 (CRITICAL). iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router ...

How severe is CVE-2017-6558?

CVE-2017-6558 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2017-6558?

Check the references section above for vendor advisories and patch information. Affected products include: Iball Ib-Wra150N Firmware, Iball Ib-Wra150N.