Ceragon FibeAir IP-10 GUI Authentication Bypass Vulnerability

Ceragon FibeAir IP-10 GUI Authentication Bypass Vulnerability

CVE-2016-10309 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In the GUI of Ceragon FibeAir IP-10 (before 7.2.0) devices, a remote attacker can bypass authentication by adding an ALBATROSS cookie with the value 0-4-11 to their browser.

Learn more about our Web Application Penetration Testing UK.