Lucene search
MitreCVE-2013-6918HistoryNov 30, 2013 - 11:43 a.m.
CVE-2013-6918
2013-11-3011:43:54
CWE-264
mitre
web.nvd.nist.gov
22
satechi
travel router
cve-2013-6918
web interface
authentication bypass
remote attack
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
7.2
Confidence
Low
EPSS
0.005
Percentile
76.4%
The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the “Web Management via WAN” setting, which allows remote attackers to bypass intended access restrictions via HTTP requests.
Affected configurations
Node
satechismart_travel_routerMatch1.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| satechi | smart_travel_router | 1.5 | cpe:2.3:h:satechi:smart_travel_router:1.5:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2013-6918
2013-11-30 11:43:54
prion
prion
Authentication flaw
2013-11-30 11:43:00
cvelist
cvelist
CVE-2013-6918
2013-11-30 11:00:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
7.2
Confidence
Low
EPSS
0.005
Percentile
76.4%
Related for CVE-2013-6918