Vulnerability Details CVE-2018-15557
An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.029
EPSS Ranking 85.8%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 10.0
References
- http://packetstormsecurity.com/files/153262/Telus-Actiontec-WEB6000Q-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2019/Jun/2
- http://seclists.org/fulldisclosure/2019/Jun/2
- http://packetstormsecurity.com/files/153262/Telus-Actiontec-WEB6000Q-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2019/Jun/2
- http://seclists.org/fulldisclosure/2019/Jun/2
Products affected by CVE-2018-15557
-
cpe:2.3:h:actiontec:web6000q:-
-
cpe:2.3:o:actiontec:web6000q_firmware:1.1.02.22