Lucene search

K
cve[email protected]CVE-2009-0680
HistoryFeb 22, 2009 - 10:30 p.m.

CVE-2009-0680

2009-02-2222:30:01
CWE-22
web.nvd.nist.gov
21
netgear
ssl312
cve-2009-0680
denial of service
web interface
vulnerability

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.4%

cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows remote attackers to cause a denial of service (device crash) via a crafted query string, as demonstrated using directory traversal sequences.

Affected configurations

NVD
Node
netgearssl312Match-
CPENameOperatorVersion
netgear:ssl312netgear ssl312eq-

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.4%

Related for CVE-2009-0680