PT-2018-18089 · So Connect · So Wifi Hotspot Web Interface

Publicado

2018-03-07

Atualizado

2021-09-09

CVE-2018-7473

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions SO Connect SO WIFI hotspot web interface versions prior to 140

Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL. This is due to an open redirect vulnerability in the web interface.

Recommendations For versions prior to 140, update to version 140 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface until the update is applied.

Correção

Open Redirect

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-601

Identificadores relacionados

CVE-2018-7473

Produtos afetados

So Wifi Hotspot Web Interface

PT-2018-18089 · So Connect · So Wifi Hotspot Web Interface

CVE-2018-7473

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3