Vulnerability Description
p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to read, or append data to, arbitrary files via requests on TCP port 9100.
CVSS Score
8.8
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intenogroup | Iopsys Firmware | >= 2.0, <= 4.2.0 |
| Intenogroup | Iopsys | - |
References
- https://neonsea.uk/blog/2018/04/15/pwn910nd.htmlExploitThird Party Advisory
- https://www.exploit-db.com/exploits/44635/ExploitThird Party AdvisoryVDB Entry
- https://neonsea.uk/blog/2018/04/15/pwn910nd.htmlExploitThird Party Advisory
- https://www.exploit-db.com/exploits/44635/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2018-10123?
CVE-2018-10123 is a vulnerability with a CVSS score of 8.8 (HIGH). p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to read, or append data to, arbitrary files via requests on TCP port 9100.
How severe is CVE-2018-10123?
CVE-2018-10123 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-10123?
Check the references section above for vendor advisories and patch information. Affected products include: Intenogroup Iopsys Firmware, Intenogroup Iopsys.