Vulnerabilities

CVE-2020-13857

February 4, 2021

An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an unauthenticated poof.cgi HTTP GET request.

Summary:

An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an unauthenticated poof.cgi HTTP GET request.

Reference Links(if available):

https://www.criticalstart.com/critical-vulnerabilities-discovered-in-mofi-routers/

https://mofinetwork.com/index.php?main_page=page&id=14

CVSS Score (if available)

v2: / HIGH

v3: /

Links to Exploits(if available)

Tags: CVE, CVE-2020-13857, MISC, Technical Description, vulnerability

CVE-2020-13857

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

BianLian Ransomware Victim: Optometric Physicians of Middle Tennessee

RansomHouse Ransomware Victim: Hirsh Industries

CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA: CISA and Partners Release Advisory on Akira Ransomware

CISA: CISA Releases Four Industrial Control Systems Advisories

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

BianLian Ransomware Victim: Optometric Physicians of Middle Tennessee

RansomHouse Ransomware Victim: Hirsh Industries

CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA: CISA and Partners Release Advisory on Akira Ransomware

CISA: CISA Releases Four Industrial Control Systems Advisories