CVE-2017-6558

9.8 CRITICAL

Published: March 09, 2017 Modified: May 13, 2026

Description

iball Baton 150M iB-WRA150N v1 00000001 1.2.6 build 110401 Rel.47776n devices are prone to an authentication bypass vulnerability that allows remote attackers to view and modify administrative router settings by reading the HTML source code of the password.cgi file.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.securityfocus.com/bid/96822

Source: cve@mitre.org

https://www.youtube.com/watch?v=8GZg1IuSfCs

Source: cve@mitre.org

http://www.securityfocus.com/bid/96822

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.youtube.com/watch?v=8GZg1IuSfCs

Source: af854a3a-2127-422b-91ae-364da2661108

4 reference(s) from NVD

Quick Stats

CVSS v3 Score

9.8 / 10.0

EPSS (Exploit Probability)

15.3%

96th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-798

Affected Vendors

iball

Related CVEs

CVE-2026-48777 N/A

CVE-2026-47750 7.8

CVE-2026-47747 7.8

CVE-2026-46448 5.4

CVE-2026-22313 9.1