CVE-2018-25146

High CVSS: 7.1

Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service disruption and requiring device restart.

Vendor

Microhardcorp

Product

Ipn4g Firmware

CWE

CWE-863

Yayın Tarihi

2025-12-24 20:15:49

Güncelleme

2026-02-02 16:16:13

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-863 Ipn4g Firmware HIGH Microhardcorp 2025

Referanslar

http://www.microhardcorp.com https://www.exploit-db.com/exploits/45035 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5481.php https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5481.php

Benzer Kayıtlar

Critical

CVE-2018-25147

Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through normal gateway opera…

High

CVE-2018-25148

Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities in the admin interfa…

Medium

CVE-2018-25149

Microhard Systems IPn4G 1.1.0 contains a cross-site request forgery vulnerability that allows attackers to perform admin…

High

CVE-2018-25143

Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to enable a restricted SS…

High

CVE-2018-25144

Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-editor.sh script that…

High

CVE-2018-25145

Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows authenticated attackers…