CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10578

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15, and AP300 devices with firmware before 2.0.0.10. Incorrect validation of the "old password" field in the change password form allows an attacker to bypass validation of this field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-10578

Watchguard » Ap100 » Version: N/A

cpe:2.3:h:watchguard:ap100:-
Watchguard » Ap102 » Version: N/A

cpe:2.3:h:watchguard:ap102:-
Watchguard » Ap200 » Version: N/A

cpe:2.3:h:watchguard:ap200:-
Watchguard » Ap300 » Version: N/A

cpe:2.3:h:watchguard:ap300:-
Watchguard » Ap100 Firmware » Version: Any

cpe:2.3:o:watchguard:ap100_firmware:*
Watchguard » Ap102 Firmware » Version: Any

cpe:2.3:o:watchguard:ap102_firmware:*
Watchguard » Ap200 Firmware » Version: Any

cpe:2.3:o:watchguard:ap200_firmware:*
Watchguard » Ap300 Firmware » Version: Any

cpe:2.3:o:watchguard:ap300_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10578

Products

Pricing

Contact Us