9.8

CVE-2019-16340

Exploit
Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to discover the recovery key via a direct request for the /sysinfo_json.cgi URI.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinksysVelop Whw0303 Firmware Version1.1.8.192419
   LinksysVelop Whw0303 Version-
LinksysVelop Whw0302 Firmware Version1.1.8.192419
   LinksysVelop Whw0302 Version-
LinksysVelop Whw0301 Firmware Version1.1.8.192419
   LinksysVelop Whw0301 Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 19.26% 0.97
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:P/I:P/A:N
CWE-425 Direct Request ('Forced Browsing')

The web application does not adequately enforce appropriate authorization on all restricted URLs, scripts, or files.

http://s3.amazonaws.com/downloads.linksys.com/support/assets/releasenotes/WHW03_A03_Velop_Customer_Release_Notes_1.1.9.195026.txt
Third Party Advisory
https://puzzor.github.io/Linksys-Velop-Authentication-bypass
Third Party Advisory
Exploit
https://www.linksys.com/us/support-article?articleNum=207568
Patch
Third Party Advisory