CVE-2017-6558
published 2017-03-09CVE-2017-6558: iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers…
PriorityP273critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
15.27%
96.4th percentile
iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router settings by reading the HTML source code of the password.cgi file.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| iball | ib-wra150n_firmware | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Unauthenticated HTTP GET request to /password.cgi on the router's management interface exposes admin credentials (username, password, and user role) in the HTML source code comment section — monitor for direct access to this path without a prior authenticated session. ↗
- →Credentials are disclosed in the HTML comment section of the password.cgi response — inspect HTTP responses from router management interfaces for comment-embedded credential patterns. ↗
- →Affected device fingerprint for scoping detections: Firmware Version 1.2.6 build 110401 Rel.47776n on Hardware Version iB-WRA150N v1 00000001. ↗
- ·The exploit uses the router's default gateway IP (172.20.174.1) as the target; the actual management IP will vary per deployment — detection rules should match on the /password.cgi path rather than a fixed IP. ↗
- ·The vulnerability is exploitable remotely with no authentication required, making it accessible to any attacker who can reach the management interface. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
2017-03-09
Published