CVE-2013-6031 in E355المعلومات

الملخص

بحسب MITRE

The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, via a direct request to (1) api/wlan/security-settings, (2) api/device/information, (3) api/wlan/basic-settings, (4) api/wlan/mac-filter, (5) api/monitoring/status, or (6) api/dhcp/settings.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

04/10/2013

إفشاء

11/03/2014

الاعتدال

تمت الموافقة

إدخال

VDB-66574

CPE

جاهز

CWE

CWE-287 (مؤكد)

استغلال

تحميل

CVSS

4.3 (NVD)

EPSS

0.03709

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2013-6031
NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-6031
CVE Details	https://www.cvedetails.com/cve/CVE-2013-6031/

التالي ▸نظرة عامة ◂ السابق

Do you need the next level of professionalism?

Upgrade your account now!