Lucene search

[email protected]CVE-2013-4876

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-4876

2022-10-0316:14:58

CWE-255

[email protected]

web.nvd.nist.gov

verizon

wireless

network

extender

scs-2u01

hardcoded password

vulnerability

nvd

cve-2013-4876

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.8%

JSON

The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for physically proximate attackers to obtain administrative access by leveraging a login prompt.

Affected configurations

NVD

Node

verizonwireless_network_extenderMatchscs-2u01

CPENameOperatorVersion
verizon:wireless_network_extenderverizon wireless network extendereqscs-2u01

CPE	Name	Operator	Version
verizon:wireless_network_extender	verizon wireless network extender	eq	scs-2u01

References

www.kb.cert.org/vuls/id/458007

www.kb.cert.org/vuls/id/BLUU-997M5B

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.8%

JSON

Related for CVE-2013-4876

nvd1 cvelist1 prion1