CVE-2018-0676
HIGHBN-SDWBP3 Firmware < 1.0.9 - Unauthenticated Authentication Bypass and Remote Command Execution
Title source: llmDescription
BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to bypass authentication to access to the management screen and execute an arbitrary command via unspecified vectors.
References (2)
Core 2
Core References
Third Party Advisory third-party-advisory
x_refsource_jvn
https://jvn.jp/en/jp/JVN65082538/index.html
Vendor Advisory x_refsource_misc
https://p3.support.panasonic.com/faq/show/5017?&site_domain=p3
Scores
CVSS v3
8.8
EPSS
0.0062
EPSS Percentile
45.1%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
panasonic/bn-sdwbp3_firmware
< 1.0.9
Published
Jan 09, 2019
Tracked Since
Feb 18, 2026