CVE-2019-25470

High CVSS: 8.7

eWON Firmware versions 12.2 to 13.0 contain an authentication bypass vulnerability that allows attackers with minimal privileges to retrieve sensitive user data by exploiting the wsdReadForm endpoint. Attackers can send POST requests to /wrcgi.bin/wsdReadForm with base64-encoded partial credentials and a crafted wsdList parameter to extract encrypted passwords for all users, which can be decrypted using a hardcoded XOR key.

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2026-03-11 19:16:00

Güncelleme

2026-03-12 21:08:22

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-798 HIGH 2026

Referanslar

https://www.ewon.biz https://www.exploit-db.com/exploits/47380 https://www.vulncheck.com/advisories/ewon-firmware-authentication-bypass-via-wsdreadform