Vulnerability Report

CVE-2017-9136

Title: Mimosa Client Radios Cryptographic Failures

Other

Proof Of Concept

No public PoC currently indexed for CVE-2017-9136.

CWE Category CWE-327

Published Date May 21, 2017

Modified Date May 13, 2026

Exploit Status Not Found

Score 7.5 CVSS v3.0

Exploit Probability (EPSS)

0.12%

Vulnerability Summary

CVE-2017-9136: An issue was discovered on Mimosa Client Radios before 2.2.3. In the device's web interface, there is a page that allows an attacker to use an unsanitized GET parameter to download files from the device as the root user. The attacker can download any file from the device's filesystem. This can be used to view unsalted, MD5-hashed administrator passwords, which can then be cracked, giving the attacker full admin access to the device's web interface. This vulnerability can also be used to view the plaintext pre-shared key (PSK) for encrypted wireless connections, or to view the device's serial number (which allows an attacker to factory reset the device).

Impacted Vendors

mimosa 2

Reference Links

http://blog.iancaling.com/post/160596244178 http://blog.iancaling.com/post/160596244178

CVSS v3.0

Source Entity [email protected]

Severity HIGH

7.5

Attack Vector

NETWORK

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

UNCHANGED

RAW VECTOR CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2.0

Source Entity [email protected]

Severity HIGH

7.8

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:N/AC:L/Au:N/C:C/I:N/A:N

Associated Attack Patterns (CAPEC)

Total: Patterns