Описание
Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
Ссылки
- PatchVendor Advisory
- URL Repurposed
- URL Repurposed
- PatchVendor Advisory
- URL Repurposed
- URL Repurposed
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:linksys:wrt54g:1.42.3:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:2.00.8:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:2.02.7:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:2.04.4:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:2.04.4_non_default:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:3.01.3:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:3.03.6:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:4.00.7:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g_v5:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00552
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
EPSS
Процентиль: 67%
0.00552
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other