CVE-2014-8868

EntryPass N5200 - Info Disclosure

Title source: llm

Description

EntryPass N5200 Active Network Control Panel does not properly restrict access, which allows remote attackers to obtain the administrator username and password, and possibly other sensitive information, via a request to /4.

Exploits (1)

exploitdb WRITEUP

webappshardware

https://www.exploit-db.com/exploits/35442

View Code ZIP pw:eip

References (3)

[Exploit] https://www.redteam-pentesting.de/advisories/rt-sa-2014-011

[Exploit] http://seclists.org/fulldisclosure/2014/Dec/2

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/534128/100/0/threaded

Scores

EPSS 0.1533

EPSS Percentile 94.7%

Details

CWE

CWE-264

Status published

Products (1)

entrypass/n5200_active_network_control_panel

Published Dec 07, 2014

Tracked Since Feb 18, 2026