CVE-2017-16887

EUVD-2017-8058
The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. Unauthorized Access to Web Services can result in disclosure of the WLAN key/password.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2018/Jan/28
https://www.exploit-db.com/exploits/43460/
http://seclists.org/fulldisclosure/2018/Jan/28
https://www.exploit-db.com/exploits/43460/