Vulnerability in WatchGuard AP Devices due to Hardcoded Credentials
CVE-2018-10575

9.8CRITICAL

Key Information:

Vendor: Watchguard
Status: Ap200 Firmware
Vendor: CVE Published:; 30 April 2018

What is CVE-2018-10575?

A security issue has been identified in WatchGuard AP100, AP102, and AP200 devices running firmware prior to version 1.2.9.15. The vulnerability stems from the presence of hardcoded credentials for an unprivileged SSH account, which uses a shell of /bin/false. This can lead to unauthorized access and create a potential pathway for exploitation, endangering network security. Users are advised to update their firmware to remediate this issue and bolster their device security.

References

https://www.watchguard.com/wgrd-blog/new-firmware-availab...

x_refsource_CONFIRM

http://seclists.org/fulldisclosure/2018/May/12

mailing-listx_refsource_FULLDISC

https://www.exploit-db.com/exploits/45409/

exploitx_refsource_EXPLOIT-DB

EPSS Score

11% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2018
Vulnerability Reserved
Apr 30, 2018

Watchguard

What is CVE-2018-10575?

References

EPSS Score

CVSS V3.1

Timeline