Описание
FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B with firmware versions 1.1.7 and earlier contain an issue where they may behave as open resolvers. If this vulnerability is exploited, FON routers may be leveraged for DNS amplification attacks to some other entities.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.7 (включая)
Одновременно
cpe:2.3:o:fon:fon2601e-se_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:fon:fon2601e-se:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.1.7 (включая)
Одновременно
cpe:2.3:o:fon:fon2601e-re_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:fon:fon2601e-re:-:*:*:*:*:*:*:*
Конфигурация 3Версия до 1.1.7 (включая)
Одновременно
cpe:2.3:o:fon:fon2601e-fsw-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:fon:fon2601e-fsw-s:-:*:*:*:*:*:*:*
Конфигурация 4Версия до 1.1.7 (включая)
Одновременно
cpe:2.3:o:fon:fon2601e-fsw-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:fon:fon2601e-fsw-b:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00296
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-400
Связанные уязвимости
github
больше 3 лет назад
FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B with firmware versions 1.1.7 and earlier contain an issue where they may behave as open resolvers. If this vulnerability is exploited, FON routers may be leveraged for DNS amplification attacks to some other entities.
EPSS
Процентиль: 53%
0.00296
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-400