Skip to main content

Ib Wra150N Firmware

4 CVEs product

Monthly

CVE-2018-6388 HIGH POC This Week

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices allow remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping test arguments on the Diagnostics page. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ib Wra150N Firmware
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
5.9%
CVE-2018-6387 CRITICAL POC Act Now

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ib Wra150N Firmware
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2017-14244 CRITICAL POC THREAT Emergency

An authentication bypass vulnerability on iBall Baton ADSL2+ Home Router FW_iB-LR7011A_1.0.2 devices potentially allows attackers to directly access administrative router settings by crafting URLs. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 50.8%.

Authentication Bypass Ib Wra150N Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
50.8%
Threat
5.0
CVE-2017-6558 CRITICAL POC THREAT Emergency

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 34.8%.

Authentication Bypass Ib Wra150N Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
34.8%
Threat
4.5
EPSS 6% CVSS 8.8
HIGH POC This Week

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices allow remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping test arguments on the Diagnostics page. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ib Wra150N Firmware
NVD Exploit-DB
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ib Wra150N Firmware
NVD
EPSS 51% 5.0 CVSS 9.8
CRITICAL POC THREAT Emergency

An authentication bypass vulnerability on iBall Baton ADSL2+ Home Router FW_iB-LR7011A_1.0.2 devices potentially allows attackers to directly access administrative router settings by crafting URLs. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 50.8%.

Authentication Bypass Ib Wra150N Firmware
NVD Exploit-DB
EPSS 35% 4.5 CVSS 9.8
CRITICAL POC THREAT Emergency

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 34.8%.

Authentication Bypass Ib Wra150N Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy