Vulnerability Details CVE-2018-18377
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to factory settings, which can be used to login using the default admin:admin credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2018-18377
-
cpe:2.3:h:orange:airbox:-
-
cpe:2.3:o:orange:airbox_firmware:y858_fl_01.16_04