Lucene search

MitreCVE-2013-3064

HistorySep 29, 2014 - 10:55 p.m.

CVE-2013-3064

2014-09-2922:55:08

mitre

web.nvd.nist.gov

linksys

ea6500

firmware

vulnerability

open redirect

nvd

cve-2013-3064

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.004

Percentile

74.0%

JSON

Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter.

Affected configurations

Nvd

Node

linksysea6500_firmwareMatch1.1.28.147876

AND

linksysea6500Match-

VendorProductVersionCPE
linksysea6500_firmware1.1.28.147876cpe:2.3:o:linksys:ea6500_firmware:1.1.28.147876:*:*:*:*:*:*:*
linksysea6500-cpe:2.3:h:linksys:ea6500:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linksys	ea6500_firmware	1.1.28.147876	cpe:2.3:o:linksys:ea6500_firmware:1.1.28.147876:::::::*
linksys	ea6500	-	cpe:2.3:h:linksys:ea6500:-:::::::*

References

securityevaluators.com/knowledge/case_studies/routers/linksys_ea6500.php

securityevaluators.com/knowledge/case_studies/routers/Vulnerability_Catalog.pdf

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.004

Percentile

74.0%

JSON

Related for CVE-2013-3064