cbcvebase.
CVE-2015-5994
published 2015-12-31

CVE-2015-5994: The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a…

PriorityP336medium6.8CVSS 3.0
AVAACLPRHUINSUCHIHAH
EPSS
1.28%
66.4th percentile
The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote attackers to obtain administrative privileges by leveraging a Wi-Fi session.

Affected

1 ranges
VendorProductVersion rangeFixed in
mediabridgemedialink_mwn-wapr300n_firmware<= 5.07.50

CVSS provenance

nvdv3.06.8MEDIUMCVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.9HIGHAV:A/AC:M/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.