CVE-2017-3216
published 2017-06-20CVE-2017-3216: WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated…
PriorityP267critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
5.17%
91.4th percentile
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to the device by performing an administrator password change on the device via a crafted POST request.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| green_packet | ox350 | — | — |
| huawei_technologies | bm2022 | — | — |
| huawei_technologies | hes-309m | — | — |
| huawei_technologies | hes-319m | — | — |
| huawei_technologies | hes-319m2w | — | — |
| huawei_technologies | hes-339m | — | — |
| mada | soho_wireless_router | — | — |
| mozilla | firefox | >= 0 < 52.0.2+build1-0ubuntu0.14.04.1 | 52.0.2+build1-0ubuntu0.14.04.1 |
| mozilla | firefox | >= 0 < 52.0.2+build1-0ubuntu0.16.04.1 | 52.0.2+build1-0ubuntu0.16.04.1 |
| zte | ox-330p | — | — |
| zyxel | max218m | — | — |
| zyxel | max218m1w | — | — |
| zyxel | max218mw | — | — |
| zyxel | max308m | — | — |
| zyxel | max318m | — | — |
| zyxel | max338m | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mf99-f92w-2rq5: WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthen
ghsa_unreviewed·2022-05-13
CVE-2017-3216 [CRITICAL] CWE-306 GHSA-mf99-f92w-2rq5: WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthen
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to the device by performing an administrator password change on the device via a crafted POST request.
OSV
firefox regression
osv·2017-03-30·CVSS 9.8
firefox regression
firefox regression
USN-3216-1 fixed vulnerabilities in Firefox. The update resulted in a
startup crash when Firefox is used with XRDP. This update fixes the
problem.
We apologize for the inconvenience.
Original advisory details:
Multiple security issues were discovered in Firefox. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to bypass same origin restrictions, obtain
sensitive information, spoof the addressbar, spoof the print dialog,
cause a denial of service via application crash or hang, or execute
arbitrary code. (CVE-2017-5398, CVE-2017-5399, CVE-2017-5400,
CVE-2017-5401, CVE-2017-5402, CVE-2017-5403, CVE-2017-5404, CVE-2017-5405,
CVE-2017-5406, CVE-2017-5407, CVE-2017-5408, CVE-2017-5410, CVE-2017-5412,
CVE-2017-541
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://blog.sec-consult.com/2017/06/ghosts-from-past-authentication-bypass.htmlhttp://www.kb.cert.org/vuls/id/350135https://sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20170607-0_Various_WiMAX_CPEs_Authentication_Bypass_v10.txthttp://blog.sec-consult.com/2017/06/ghosts-from-past-authentication-bypass.htmlhttp://www.kb.cert.org/vuls/id/350135https://sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20170607-0_Various_WiMAX_CPEs_Authentication_Bypass_v10.txt
2017-06-20
Published