CVE-2017-6558

Published: Mar 9, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router settings by reading the HTML source code of the password.cgi file.

Affected (1)

Products: Iball: Ib Wra150n Firmware

1 product

Ib Wra150n Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Iball Ib Wra150n Firmware	Version 1.2.6

Running on/with	Platform Versions
Iball Ib Wra150n	All versions

Related CWEs

Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

References (4)

http://www.securityfocus.com/bid/96822

Source: cve@mitre.org

https://www.youtube.com/watch?v=8GZg1IuSfCs

Source: cve@mitre.org

http://www.securityfocus.com/bid/96822

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.youtube.com/watch?v=8GZg1IuSfCs

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.