Mediabridge Medialink Mwn-Wapr300N Firmware vulnerabilities
3 known vulnerabilities affecting mediabridge/medialink_mwn-wapr300n_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2015-5995P2CRITICALCVSS 9.8PoC≤ 5.07.502015-12-31
CVE-2015-5995 [CRITICAL] CWE-264 CVE-2015-5995: Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices
Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header.
nvd
CVE-2015-5996P3HIGHCVSS 8.8PoC≤ 5.07.502015-12-31
CVE-2015-5996 [HIGH] CWE-352 CVE-2015-5996: Cross-site request forgery (CSRF) vulnerability on Mediabridge Medialink MWN-WAPR300N devices with f
Cross-site request forgery (CSRF) vulnerability on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 allows remote attackers to hijack the authentication of arbitrary users.
nvd
CVE-2015-5994P3MEDIUMCVSS 6.8≤ 5.07.502015-12-31
CVE-2015-5994 [MEDIUM] CWE-255 CVE-2015-5994: The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has
The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote attackers to obtain administrative privileges by leveraging a Wi-Fi session.
nvd