NOVUS AirGate 4G Incorrect Access Control Vulnerability Allowing Unauthenticated Credential Retrieval

Vulnerability

A vulnerability exists in NOVUS AirGate 4G firmware version 1.1.16, specifically within the '/uci/get/' endpoint. This vulnerability is due to incorrect access control, which allows unauthenticated attackers to obtain administrator credentials by sending a crafted POST request. The endpoint fails to properly restrict access to sensitive information, creating a risk for unauthorized credential retrieval.

Impact

Exploitation of this vulnerability allows for the unauthorized retrieval of administrator credentials, which can lead to full administrative access on the device. With such access, an attacker could modify device configurations and potentially compromise the security of the network where the device is deployed.

Added: May 18, 2026, 6:29 PM

Updated: May 18, 2026, 6:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

8.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

8.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NOVUS AirGate 4G Incorrect Access Control Vulnerability Allowing Unauthenticated Credential Retrieval

Vulnerability

Impact

Affected Products

NOVUS AirGate 4G

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating