CVE-2018-14783

Name of the Vulnerable Software and Affected Versions NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) versions 2.0.29.11 and prior

Description A cross-site request forgery condition can occur, allowing an attacker to change passwords of the device remotely. This issue is related to the exploitation of a vulnerability that may enable a remote attacker to modify the device's password.

Recommendations For versions 2.0.29.11 and prior, consider changing the password regularly and restricting remote access to the device until a fix is available. As a temporary workaround, restrict access to the device's web interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.