QwikSec

Security Database

CVE

CWE

Training

CVE-2015-6023

Published: Feb 9, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote attackers to bypass intended access restrictions via a direct request. NOTE: this issue can be combined with CVE-2015-6024 to execute arbitrary commands.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

20160506 Re: NetCommWireless HSPA 3G10WVE Wireless Router - Multiple vulnerabilities

mailing-list

x_refsource_FULLDISC

http://packetstormsecurity.com/files/136901/NetCommWireless-HSPA-3G10WVE-Authentication-Bypass-Code-Execution.html

x_refsource_MISC

20160505 Re: NetCommWireless HSPA 3G10WVE Wireless Router Multiple vulnerabilities

mailing-list

x_refsource_BUGTRAQ

20160506 NetCommWireless HSPA 3G10WVE Wireless Router - Multiple vulnerabilities

mailing-list

x_refsource_FULLDISC

20160503 NetCommWireless HSPA 3G10WVE Wireless Router Multiple vulnerabilities

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.