Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header.
References
Link | Resource |
---|---|
https://www.kb.cert.org/vuls/id/630872 | Third Party Advisory US Government Resource |
https://www.kb.cert.org/vuls/id/630872 | Third Party Advisory US Government Resource |
Configurations
History
21 Nov 2024, 02:34
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.kb.cert.org/vuls/id/630872 - Third Party Advisory, US Government Resource |
Information
Published : 2015-12-31 05:59
Updated : 2024-11-21 02:34
NVD link : CVE-2015-5995
Mitre link : CVE-2015-5995
CVE.ORG link : CVE-2015-5995
JSON object : View
Products Affected
tenda
- n3_wireless_n150
mediabridge
- medialink_mwn-wapr300n
- medialink_mwn-wapr300n_firmware
CWE
CWE-264
Permissions, Privileges, and Access Controls