CVE-2019-13405

A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining software.
Configurations

Configuration 1


Information

Published : 2019-08-29 01:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-13405

Mitre link : CVE-2019-13405

Products Affected
CWE