CVE-2018-6908

Published: Nov 1, 2018Modified: Nov 21, 2024

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

An authentication bypass vulnerability exists in the Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 web application allowing an unauthenticated attacker to perform authenticated actions on the device via a 127.0.0.1:port value in the HTTP 'Host' header, as demonstrated by retrieving credentials.

Affected (2)

Products: Rainmachine: Mini 8 Firmware, Touch Hd 12 Firmware

2 products

Mini 8 Firmware

Touch Hd 12 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Rainmachine Mini 8 Firmware	From 4.0.539 to 4.0.975

Running on/with	Platform Versions
Rainmachine Mini 8	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Rainmachine Touch Hd 12 Firmware	From 4.0.539 to 4.0.974

Running on/with	Platform Versions
Rainmachine Touch Hd 12	All versions

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (2)

http://www.irongeek.com/i.php?page=videos/bsidesrdu2018/bsidesrdu-2018-07-when-it-rains-it-pours-sam-granger

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.irongeek.com/i.php?page=videos/bsidesrdu2018/bsidesrdu-2018-07-when-it-rains-it-pours-sam-granger

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.