How severe is CVE-2018-12257?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2018-12257?

This is classified as CWE-295, which is a common weakness in software security.

CVE-2018-12257 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade firmware to a custom image due to lack of SSL validation by changing the nameservers in /etc/resolv.conf to the attacker's server, and serving the expected HTTPS response containing new firmware for the device to download.

Related Vulnerabilities

CVE-2020-29457

MEDIUM

CVSS:4.4(Medium)

A Privilege Elevation vulnerability in OPC UA .NET Standard Stack 1.4.363.107 could allow a rogue application to establish a secure connection.

CWE-2952020

CVE-2019-9148

MEDIUM

CVSS:4.3(Medium)

Mailvelope prior to 3.3.0 accepts or operates with invalid PGP public keys: Mailvelope allows importing keys that contain users without a valid self-certification. Keys that are obviously invalid are ...

CWE-2952019

CVE-2020-10659

MEDIUM

CVSS:4.3(Medium)

Entrust Entelligence Security Provider (ESP) before 10.0.60 on Windows mishandles errors during SSL Certificate Validation, leading to situations where (for example) a user continues to interact with ...

CWE-2952020

CVE-2020-16197

MEDIUM

CVSS:4.3(Medium)

An issue was discovered in Octopus Deploy 3.4. A deployment target can be configured with an Account or Certificate that is outside the scope of the deployment target. An authorised user can potential...

CWE-2952020

CVE-2020-28942

MEDIUM

CVSS:4.3(Medium)

An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an RA over the Peers protocol. As a part of EJBCA's domain security model, the peer connector allows the re...

CWE-2952020

CVE-2020-6529

MEDIUM

CVSS:4.3(Medium)

Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to leak cross-origin data via a crafted HTML page.

CWE-2952020