CVE-2018-11094

Name of the Vulnerable Software and Affected Versions Intelbras NCLOUD 300 version 1.0

Description The issue is related to the use of predefined registration data in the ExportSettings.sh, updateWPS, RebootSystem, and vpnBasicSettings components of the Intelbras NCLOUD 300 Wi-Fi router's firmware. An attacker can exploit this to disclose protected information and gain access to the device with administrator privileges. The API endpoints "cgi-bin/ExportSettings.sh", "goform/updateWPS", "goform/RebootSystem", and "goform/vpnBasicSettings" do not require authentication, allowing an attacker to retrieve sensitive information, such as username and password, by making an HTTP POST request to these endpoints.

Recommendations For version 1.0, consider disabling access to the "cgi-bin/ExportSettings.sh", "goform/updateWPS", "goform/RebootSystem", and "goform/vpnBasicSettings" API endpoints until a patch is available to require authentication for these endpoints. Restrict access to these components to minimize the risk of exploitation. Avoid using these endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.