Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:4A6EA472-07F9-4F41-9994-6394FE5838B6
HistoryMay 01, 2015 - 12:00 a.m.

CVE-2014-8361

2015-05-0100:00:00
attackerkb.com
73

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.7%

JSON

The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.

Recent assessments:

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

Related

prion 1
nessus 1
zdi 1
threatpost 9
jvn 3
packetstorm 1
checkpoint_advisories 1
zdt 1
f5 1
cisa_kev 1
cve 1
thn 3
securelist 2
myhack58 1
mmpc 1
mssecure 1
prion
prion
Design/Logic Flaw
2015-05-01 15:59:00
nessus
nessus
Realtek SDK miniigd SOAP Service RCE
2015-05-01 00:00:00
zdi
zdi
(0Day) Realtek SDK miniigd AddPortMapping SOAP Action Command Injection Remote Code Execution Vulnerability
2015-04-24 00:00:00
threatpost
threatpost
Routers Vulnerable to Critical Remote Code Execution Vulnerability
2015-04-30 14:07:04
Keksec Cybergang Debuts Simps Botnet for Gaming DDoS
2021-05-19 16:53:32
Code Used in Zero Day Huawei Router Attack Made Public
2017-12-28 14:01:00
jvn
jvn
JVN#74871939: WSR-300HP vulnerable to arbitrary code execution
2017-08-08 00:00:00
JVN#67456944: Multiple vulnerabilities in multiple Aterm products
2021-04-09 00:00:00
JVN#47580234: Multiple vulnerabilities in multiple ELECOM products
2021-01-26 00:00:00
packetstorm
packetstorm
Realtek SDK Miniigd UPnP SOAP Command Execution
2015-05-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Realtek SDK Miniigd AddPortMapping SOAP Action Command Injection (CVE-2014-8361)
2016-09-20 00:00:00
zdt
zdt
Realtek SDK Miniigd UPnP SOAP Command Execution Exploit
2015-06-02 00:00:00
f5
f5
K57390658 : miniigd SOAP service in Realtek SDK vulnerability CVE-2014-8361
2018-01-18 00:00:00
cisa_kev
cisa_kev
Realtek SDK Improper Input Validation Vulnerability
2023-09-18 00:00:00
cve
cve
CVE-2014-8361
2015-05-01 15:59:00
thn
thn
New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks
2023-03-17 12:07:00
New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild
2021-03-16 10:32:00
Trend Micro Releases Urgent Fix for Actively Exploited Critical Security Vulnerability
2023-09-20 05:28:00
securelist
securelist
Threat Landscape for Industrial Automation Systems in H2 2017
2018-03-26 10:00:27
New trends in the world of IoT threats
2018-09-18 10:00:36
myhack58
myhack58
Next from the printer coming out will be?-- The theory of the UPnP using the status quo and risk-vulnerability warning-the black bar safety net
2019-03-29 00:00:00
mmpc
mmpc
Microsoft research uncovers new Zerobot capabilities
2022-12-21 20:00:00
mssecure
mssecure
Microsoft research uncovers new Zerobot capabilities
2022-12-21 20:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.7%

JSON
Related for AKB:4A6EA472-07F9-4F41-9994-6394FE5838B6
prion1nessus1zdi1threatpost9jvn3packetstorm1checkpoint_advisories1zdt1f51cisa_kev1cve1thn3securelist2myhack581mmpc1mssecure1