← back
CVE-2018-10577

CVE-2018-10577

EPSS 6.6%
An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15, and AP300 devices with firmware before 2.0.0.10. File upload functionality allows any users authenticated on the web interface to upload files containing code to the web root, allowing these files to be executed as root.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/45409/unverifiedexploitdbwww.exploit-db.com/exploits/45409unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://seclists.org/fulldisclosure/2018/May/12https://www.exploit-db.com/exploits/45409/