Vulnerability Details CVE-2019-7746
JioFi 4 jmr1140 Amtel_JMR1140_R12.07 devices allow remote attackers to obtain an admin token by making a /cgi-bin/qcmap_auth type=getuser request and then reading the token field. This token value can then be used to change the Wi-Fi password or perform a factory reset.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.4%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 4.3
Products affected by CVE-2019-7746
-
-
cpe:2.3:o:jio:jmr1140_firmware:amtel_jmr1140_r12.07