Vulnerability Description
Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier allows an attacker on the same network segment to bypass access restriction to access the information and files stored on the affected device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Toshiba | Hem-Gw16A Firmware | <= 1.2.9 |
| Toshiba | Hem-Gw16A | - |
| Toshiba | Hem-Gw26A Firmware | <= 1.2.9 |
| Toshiba | Hem-Gw26A | - |
References
- http://www.tlt.co.jp/tlt/information/seihin/notice/defect/20181219/20181219.htmVendor Advisory
- https://jvn.jp/en/jp/JVN99810718/index.htmlThird Party Advisory
- http://www.tlt.co.jp/tlt/information/seihin/notice/defect/20181219/20181219.htmVendor Advisory
- https://jvn.jp/en/jp/JVN99810718/index.htmlThird Party Advisory
FAQ
What is CVE-2018-16197?
CVE-2018-16197 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier allows an attacker on the same network segment to bypass access restriction to access the information...
How severe is CVE-2018-16197?
CVE-2018-16197 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-16197?
Check the references section above for vendor advisories and patch information. Affected products include: Toshiba Hem-Gw16A Firmware, Toshiba Hem-Gw16A, Toshiba Hem-Gw26A Firmware, Toshiba Hem-Gw26A.