Extreme Networks

Judd · 08-15-2018

In the VN 2018-003 disclosure, it is unclear to me if the attacker would have to be authenticated within the web GUI (as an administrator or otherwise) in order to conduct the arbitrary file write from CVE-2018-5795. Can you please let me know what ...

Judd · 08-23-2018

In case others are watching this, the release notes claiming fix for CVE-2018-5795 indicates low access authentication is required for this particular CVE. https://documentation.extremenetworks.com/release_notes/WiNG/9035206-03_WiNG%205_9_1_3%20Rele...

Judd · 08-17-2018

Thank you for the response, I was attempting to NOT have to make assumptions. You understand my confusion given the difference in wording between the two CVEs. Did the team doing analysis of the IOActive research CONFIRM no GUI authentication is ne...

Extreme Networks

User Statistics

User Activity

Is web GUI authentication necessary to exploit CVE-2018-5795 described in VN 2018-003?

RE: Is web GUI authentication necessary to exploit CVE-2018-5795 described in VN 2018-003?

RE: Is web GUI authentication necessary to exploit CVE-2018-5795 described in VN 2018-003?