Lucene search

MitreCVE-2013-5122

HistoryJan 07, 2020 - 2:15 p.m.

CVE-2013-5122

2020-01-0714:15:10

CWE-287

mitre

web.nvd.nist.gov

101

cisco

linksys

routers

ea2700

ea3500

e4200

ea4500

vulnerability

cve-2013-5122

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.273

Percentile

96.9%

JSON

Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access

Affected configurations

Nvd

Node

ciscolinksys_ea2700_firmwareMatch1.0.14

AND

ciscolinksys_ea2700Match-

Node

ciscolinksys_ea3500_firmwareMatch1.0.30

AND

ciscolinksys_ea3500Match-

Node

ciscolinksys_e4200_firmwareMatch2.0.36

AND

ciscolinksys_e4200Match-

Node

ciscolinksys_ea4500_firmwareMatch2.0.36

AND

ciscolinksys_ea4500Match-

VendorProductVersionCPE
ciscolinksys_ea2700_firmware1.0.14cpe:2.3:o:cisco:linksys_ea2700_firmware:1.0.14:*:*:*:*:*:*:*
ciscolinksys_ea2700-cpe:2.3:h:cisco:linksys_ea2700:-:*:*:*:*:*:*:*
ciscolinksys_ea3500_firmware1.0.30cpe:2.3:o:cisco:linksys_ea3500_firmware:1.0.30:*:*:*:*:*:*:*
ciscolinksys_ea3500-cpe:2.3:h:cisco:linksys_ea3500:-:*:*:*:*:*:*:*
ciscolinksys_e4200_firmware2.0.36cpe:2.3:o:cisco:linksys_e4200_firmware:2.0.36:*:*:*:*:*:*:*
ciscolinksys_e4200-cpe:2.3:h:cisco:linksys_e4200:-:*:*:*:*:*:*:*
ciscolinksys_ea4500_firmware2.0.36cpe:2.3:o:cisco:linksys_ea4500_firmware:2.0.36:*:*:*:*:*:*:*
ciscolinksys_ea4500-cpe:2.3:h:cisco:linksys_ea4500:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	linksys_ea2700_firmware	1.0.14	cpe:2.3:o:cisco:linksys_ea2700_firmware:1.0.14:::::::*
cisco	linksys_ea2700	-	cpe:2.3:h:cisco:linksys_ea2700:-:::::::*
cisco	linksys_ea3500_firmware	1.0.30	cpe:2.3:o:cisco:linksys_ea3500_firmware:1.0.30:::::::*
cisco	linksys_ea3500	-	cpe:2.3:h:cisco:linksys_ea3500:-:::::::*
cisco	linksys_e4200_firmware	2.0.36	cpe:2.3:o:cisco:linksys_e4200_firmware:2.0.36:::::::*
cisco	linksys_e4200	-	cpe:2.3:h:cisco:linksys_e4200:-:::::::*
cisco	linksys_ea4500_firmware	2.0.36	cpe:2.3:o:cisco:linksys_ea4500_firmware:2.0.36:::::::*
cisco	linksys_ea4500	-	cpe:2.3:h:cisco:linksys_ea4500:-:::::::*

References

www.securityfocus.com/bid/60897

www.securitytracker.com/id/1029769

packetstormsecurity.com/files/cve/CVE-2013-5122

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.273

Percentile

96.9%

JSON

Related for CVE-2013-5122