9

CVE-2015-5536

EPSS 3.35%
Veröffentlicht 13.08.2015 14:59:08
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Belkin N300 Dual-Band Wi-Fi Range Extender with firmware before 1.04.10 allows remote authenticated users to execute arbitrary commands via the (1) sub_dir parameter in a formUSBStorage request; pinCode parameter in a (2) formWpsStart or (3) formiNICWpsStart request; (4) wps_enrolee_pin parameter in a formWlanSetupWPS request; or unspecified parameters in a (5) formWlanMP, (6) formBSSetSitesurvey, (7) formHwSet, or (8) formConnectionSetting request.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Belkin ≫ N300 Dual-band Wi-fi Range Extender Firmware Version1.0.0

Belkin ≫ N300 Dual-band Wi-fi Range Extender

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.35%	0.861

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

http://www.belkin.com/us/support-article?articleNum=4975

Patch

http://www.securityfocus.com/bid/75978

http://www.securitytracker.com/id/1033295

http://www.zerodayinitiative.com/advisories/ZDI-15-343/

http://www.zerodayinitiative.com/advisories/ZDI-15-344/

http://www.zerodayinitiative.com/advisories/ZDI-15-346/

http://www.zerodayinitiative.com/advisories/ZDI-15-347/

http://www.zerodayinitiative.com/advisories/ZDI-15-348/

http://www.zerodayinitiative.com/advisories/ZDI-15-349/

http://www.zerodayinitiative.com/advisories/ZDI-15-350/

http://www.zerodayinitiative.com/advisories/ZDI-15-351/

https://nvd.nist.gov/vuln/detail/CVE-2015-5536

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-5536

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-5536

EUVD