CVE-2018-15557

Name of the Vulnerable Software and Affected Versions Telus Actiontec WEB6000Q version 1.1.02.22

Description An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q devices. An attacker can statically set their IP to anything on the 169.254.1.0/24 subnet and obtain root access by connecting to 169.254.1.2 port 23 with telnet or netcat.

Recommendations For version 1.1.02.22, as a temporary workaround, consider disabling access to port 23 to minimize the risk of exploitation. Restrict access to the 169.254.1.0/24 subnet to prevent unauthorized connections. At the moment, there is no information about a newer version that contains a fix for this vulnerability.