1. Home
  2. CVE Database
  3. CVE-2018-25146
HIGH · 8.1

CVE-2018-25146

Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill b...

Vulnerability Description

Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service disruption and requiring device restart.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
MicrohardcorpIpn4G Firmware1.1.0
MicrohardcorpIpn4G-
MicrohardcorpIpn3Gb Firmware2.2.0
MicrohardcorpIpn3Gb-
MicrohardcorpIpn4Gb Firmware1.1.6
MicrohardcorpIpn4Gb-
MicrohardcorpBullet-3G Firmware1.2.0
MicrohardcorpBullet-3G-
MicrohardcorpVip4Gb Firmware1.1.6
MicrohardcorpVip4Gb-
MicrohardcorpVip4Gb Wifi-N Firmware1.1.6
MicrohardcorpVip4Gb Wifi-N-
MicrohardcorpBullet-Lte Firmware1.2.0
MicrohardcorpBullet-Lte-
MicrohardcorpIpn3Gii Firmware1.2.0
MicrohardcorpIpn3Gii-
MicrohardcorpIpn4Gii Firmware1.2.0
MicrohardcorpIpn4Gii-
MicrohardcorpBulletplus Firmware1.3.0
MicrohardcorpBulletplus-

Related Weaknesses (CWE)

CWE-863

References

FAQ

What is CVE-2018-25146?

CVE-2018-25146 is a vulnerability with a CVSS score of 8.1 (HIGH). Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill b...

How severe is CVE-2018-25146?

CVE-2018-25146 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-25146?

Check the references section above for vendor advisories and patch information. Affected products include: Microhardcorp Ipn4G Firmware, Microhardcorp Ipn4G, Microhardcorp Ipn3Gb Firmware, Microhardcorp Ipn3Gb, Microhardcorp Ipn4Gb Firmware.