Lucene search
HistoryDec 30, 2013 - 4:53 a.m.
CVE-2013-5038
hot hotbox
router
authentication bypass
remote attackers
cve-2013-5038
nvd
5.8 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.2%
The HOT HOTBOX router with software 2.1.11 allows remote attackers to bypass authentication by configuring a source IP address that had previously been used for an authenticated session.
Affected configurations
Node
hothotbox_router_firmwareMatch2.1.11
hothotbox_routerMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| hot:hotbox_router_firmware | hot hotbox router firmware | eq | 2.1.11 |
| hot:hotbox_router | hot hotbox router | eq | - |
Related
prion
prion
Authentication flaw
2013-12-30 04:53:00
cvelist
cvelist
CVE-2013-5038
2013-12-30 02:00:00
nvd
nvd
CVE-2013-5038
2013-12-30 04:53:07
seebug
seebug
Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities
2014-07-01 00:00:00
packetstorm
packetstorm
HOTBOX 2.1.11 CSRF / Traversal / Denial Of Service
2013-11-04 00:00:00
exploitpack
exploitpack
Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities
2013-11-08 00:00:00
zdt
zdt
HOTBOX 2.1.11 CSRF / Traversal / Denial Of Service
2013-11-05 00:00:00
Sagemcom [email protected] 3184 2.1.11 - Multiple Vulnerabilities
2013-11-08 00:00:00
exploitdb
exploitdb
Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities
2013-11-08 00:00:00
5.8 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.2%
Related for CVE-2013-5038