CVE-2012-2974 in SMC8024L2 switchinfo

Summary

The web interface on the SMC SMC8024L2 switch allows remote attackers to bypass authentication and obtain administrative access via a direct request to a .html file under (1) status/, (2) system/, (3) ports/, (4) trunks/, (5) vlans/, (6) qos/, (7) rstp/, (8) dot1x/, (9) security/, (10) igmps/, or (11) snmp/.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

05/30/2012

Disclosure

07/19/2012

Moderation

VulDB entry created

Entries

1: VDB-61341

CPE

ready

CWE

CWE-287 (Confirmed)

CVSS

9.8

EPSS

0.00429

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2974
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2974
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2974/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!