QwikSec

Security Database

CVE

CWE

Training

CVE-2018-10576

Published: Apr 30, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Improper authentication handling by the native Access Point web UI allows authentication using a local system account (instead of the dedicated web-only user).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.watchguard.com/wgrd-blog/new-firmware-available-ap100ap102ap200ap300-security-vulnerability-fixes

x_refsource_CONFIRM

20180501 Multiple issues in WatchGuard AP100 AP102 AP200 result in remote code execution

mailing-list

x_refsource_FULLDISC

exploit

x_refsource_EXPLOIT-DB

https://watchguardsupport.secure.force.com/publicKB?type=KBSecurityIssues&SFDCID=kA62A0000000LIy

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.