CVE-2024-42658

CRITICAL

Wishnet Nepstech Wifi Router <1.0 - Info Disclosure

Title source: llm

Description

An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter

Exploits (1)

nomisec WRITEUP
by baroi-ai · poc
https://github.com/baroi-ai/CVE-2024-42658

References (3)

Scores

CVSS v3 9.8
EPSS 0.1439
EPSS Percentile 94.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-200
Status published
Products (1)
nepstech/ntpl-xpon1gfevn_firmware 1.0
Published Aug 19, 2024
Tracked Since Feb 18, 2026