ID
VAR-201808-0638
CVE
CVE-2018-15181
TITLE
JioFi 4G Hotspot M2S Vulnerability related to input validation on devices
Trust: 0.8
sources:
JVNDB: JVNDB-2018-008995
DESCRIPTION
JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields. JioFi 4G Hotspot M2S The device contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. JioFi 4G Hotspot M2S is a portable wireless router device. There is a security flaw in JioFi 4G Hotspot M2S
Trust: 1.71
sources:
NVD: CVE-2018-15181 //
JVNDB: JVNDB-2018-008995 //
VULHUB: VHN-125415
AFFECTED PRODUCTS
| vendor: | jio | model: | 4g hotspot m2s | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | reliance jio infocomm | model: | jiofi m2s | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2018-008995 //
CNNVD: CNNVD-201808-271 //
NVD: CVE-2018-15181
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-125415 //
JVNDB: JVNDB-2018-008995 //
CNNVD: CNNVD-201808-271 //
NVD: CVE-2018-15181
PROBLEMTYPE DATA
| problemtype: | CWE-79 | Trust: 1.1 |
| problemtype: | CWE-20 | Trust: 0.9 |
sources:
VULHUB: VHN-125415 //
JVNDB: JVNDB-2018-008995 //
NVD: CVE-2018-15181
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201808-271
TYPE
XSS
Trust: 0.6
sources:
CNNVD: CNNVD-201808-271
CONFIGURATIONS
sources:
JVNDB: JVNDB-2018-008995
EXPLOIT AVAILABILITY
sources:
VULHUB: VHN-125415
PATCH
| title: | JioFi M2 | url: | https://www.jio.com/shop/en-in/jiofi-m2/p/491193575 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2018-008995
EXTERNAL IDS
| db: | NVD | id: | CVE-2018-15181 | Trust: 2.5 |
| db: | EXPLOIT-DB | id: | 45199 | Trust: 2.5 |
| db: | JVNDB | id: | JVNDB-2018-008995 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201808-271 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-125415 | Trust: 0.1 |
sources:
VULHUB: VHN-125415 //
JVNDB: JVNDB-2018-008995 //
CNNVD: CNNVD-201808-271 //
NVD: CVE-2018-15181
REFERENCES
| url: | https://www.exploit-db.com/exploits/45199/ | Trust: 2.5 |
| url: | https://gkaim.com/cve-2018-15181-vikas-chaudhary/ | Trust: 1.7 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-15181 | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2018-15181 | Trust: 0.8 |
sources:
VULHUB: VHN-125415 //
JVNDB: JVNDB-2018-008995 //
CNNVD: CNNVD-201808-271 //
NVD: CVE-2018-15181
SOURCES
| db: | VULHUB | id: | VHN-125415 |
| db: | JVNDB | id: | JVNDB-2018-008995 |
| db: | CNNVD | id: | CNNVD-201808-271 |
| db: | NVD | id: | CVE-2018-15181 |
LAST UPDATE DATE
2024-11-23T22:48:35.509000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-125415 | date: | 2019-10-03T00:00:00 |
| db: | JVNDB | id: | JVNDB-2018-008995 | date: | 2018-11-05T00:00:00 |
| db: | CNNVD | id: | CNNVD-201808-271 | date: | 2019-10-23T00:00:00 |
| db: | NVD | id: | CVE-2018-15181 | date: | 2024-11-21T03:50:28.430 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-125415 | date: | 2018-08-09T00:00:00 |
| db: | JVNDB | id: | JVNDB-2018-008995 | date: | 2018-11-05T00:00:00 |
| db: | CNNVD | id: | CNNVD-201808-271 | date: | 2018-08-10T00:00:00 |
| db: | NVD | id: | CVE-2018-15181 | date: | 2018-08-09T19:29:00.457 |