Lucene search

[email protected]NVD:CVE-2011-4500

HistoryNov 22, 2011 - 11:55 a.m.

CVE-2011-4500

2011-11-2211:55:04

CWE-16

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

71.2%

JSON

The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests.

Affected configurations

NVD

Node

ciscolinksys_wrt54gx_router_firmwareMatch2.00.05

AND

linksyswrt54gxMatch2.0

References

www.kb.cert.org/vuls/id/357851

www.upnp-hacks.org/devices.html

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

71.2%

JSON

Related for NVD:CVE-2011-4500

prion1 cvelist1 cve1