Lucene search
MitreCVE-2011-4506HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-4506
2022-10-0316:15:15
CWE-16
mitre
web.nvd.nist.gov
25
thomson
tg585
firmware
upnp
igd
vulnerability
port mapping
soap
wan
security
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.004
Percentile
74.5%
The UPnP IGD implementation on the Thomson (aka Technicolor) TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an “external forwarding” vulnerability.
Affected configurations
Node
technicolortg585_router_firmwareRange≤7.4
technicolortg585_router
| Vendor | Product | Version | CPE |
|---|---|---|---|
| technicolor | tg585_router_firmware | cpe:/a:technicolor:tg585_router_firmware:::: | |
| technicolor | tg585_router | cpe:/h:technicolor:tg585_router:::: |
Related
prion
prion
Xxe
2011-11-22 11:55:00
cvelist
cvelist
CVE-2011-4506
2022-10-03 16:15:15
nvd
nvd
CVE-2011-4506
2011-11-22 11:55:06
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.004
Percentile
74.5%
Related for CVE-2011-4506