Vulnerability Details CVE-2016-10309
In the GUI of Ceragon FibeAir IP-10 (before 7.2.0) devices, a remote attacker can bypass authentication by adding an ALBATROSS cookie with the value 0-4-11 to their browser.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2016-10309
-
cpe:2.3:h:ceragon:fibeair_ip-10:-
-
cpe:2.3:o:ceragon:fibeair_ip-10_firmware:-
-
cpe:2.3:o:ceragon:fibeair_ip-10_firmware:7.1.0