Vulnerability in Belkin N750 Db Wi-fi Dual-band N+ Gigabit Router (F9k1103)
CVE-2018-1146
A remote unauthenticated user can enable telnet on the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to set.cgi. When enabled the telnet session requires no password and provides root access.
EPSS: 0.291 (97.9th percentile) — read the EPSS interpretation.
Affected products
- Belkin N750 Db Wi-fi Dual-band N+ Gigabit Router (F9k1103) — versions Firmware 1.10.22?
References
- www.tenable.com/security/research/tra-2018-08 (x_refsource_MISC)