Lucene search
MitreCVE-2004-2326HistoryAug 16, 2005 - 4:00 a.m.
CVE-2004-2326
2005-08-1604:00:00
mitre
web.nvd.nist.gov
22
cve-2004-2326
sql injection
ip3 networks
netaccess appliance
bypass authentication
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.004
Percentile
73.8%
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.
Affected configurations
Node
ip3_networksip3_netaccess
ORip3_networksip3_netaccess_-_hospitality
ORip3_networksip3_netaccess_-_wireless_hotspots
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ip3_networks | ip3_netaccess | * | cpe:2.3:h:ip3_networks:ip3_netaccess:*:*:*:*:*:*:*:* |
| ip3_networks | ip3_netaccess_-_hospitality | * | cpe:2.3:h:ip3_networks:ip3_netaccess_-_hospitality:*:*:*:*:*:*:*:* |
| ip3_networks | ip3_netaccess_-_wireless_hotspots | * | cpe:2.3:h:ip3_networks:ip3_netaccess_-_wireless_hotspots:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
IP3 Networks IP3 NetAccess Appliance - SQL Injection
2004-03-12 00:00:00
cvelist
cvelist
CVE-2004-2326
2005-08-16 04:00:00
nvd
nvd
CVE-2004-2326
2004-12-31 05:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.004
Percentile
73.8%
Related for CVE-2004-2326