CVE-2017-16902

EUVD-2017-8072
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
vonagevdv-23_firmware
3.2.11-0.9.40
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://gh0s7.net/vonage2
https://www.exploit-db.com/exploits/43164/
http://gh0s7.net/vonage2
https://www.exploit-db.com/exploits/43164/