CVE-2018-15358

CVE-2018-15358

EPSS 1.3%

An authenticated attacker with low privileges can activate high privileged user and use it to expand attack surface in Eltex ESP-200 firmware version 1.2.0.

Affected products

Kaspersky Lab · Eltex ESP-200

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-014-eltex-esp-200-router-build-in-user-with-highest-privileges/