7.1
CVE-2013-6951
- EPSS 0.62%
- Veröffentlicht 22.02.2014 21:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
LoginThe Belkin WeMo Home Automation firmware before 3949 does not maintain a set of Certification Authority public keys, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary X.509 certificate.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Belkin ≫ Wemo Home Automation Firmware Version2769
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.62% | 0.45 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:C/A:N
|
http://www.ioactive.com/pdfs/IOActive_Belkin-advisory-lite.pdf
http://www.kb.cert.org/vuls/id/656302