Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-9222
HistoryDec 24, 2014 - 6:59 p.m.

CVE-2014-9222

2014-12-2418:59:06
CWE-17
[email protected]
web.nvd.nist.gov
117
20
allegrosoft
rompager
"misfortune cookie"
cve-2014-9222
memory corruption
huawei
home gateway
remote attackers
privilege escalation

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.97 High

EPSS

Percentile

99.8%

JSON

AllegroSoft RomPager 4.34 and earlier, as used in Huawei Home Gateway products and other vendors and products, allows remote attackers to gain privileges via a crafted cookie that triggers memory corruption, aka the “Misfortune Cookie” vulnerability.

Affected configurations

NVD
Node
allegrosoftrompagerRange4.07

Social References

More

Related

checkpoint_advisories 1
nvd 1
seebug 2
kitploit 1
threatpost 2
openvas 1
prion 1
ics 1
metasploit 2
canvas 1
thn 1
cvelist 1
nessus 3
cert 1
huawei 1
exploitpack 1
packetstorm 1
nmap 1
exploitdb 1
checkpoint_advisories
checkpoint_advisories
RomPager Authentication Security Bypass - Misfortune Cookie (CVE-2014-9222)
2014-12-03 00:00:00
nvd
nvd
CVE-2014-9222
2014-12-24 18:59:06
seebug
seebug
Allegro v4.34 权限提升漏洞
2015-05-07 00:00:00
Eir’s D1000 Modem Is Wide Open To Being Hacked.
2017-12-28 00:00:00
kitploit
kitploit
hacklib - Pentesting, Port Scanning, and Logging in anywhere with Python
2016-10-05 14:30:00
threatpost
threatpost
Critical Flaws in Syringe Pump, Device Gateways Threaten Patient Safety
2018-08-30 13:34:37
New Mirai Variant Roars into Action With 54 Hour DDoS Attacks
2017-03-30 14:50:51
openvas
openvas
Allegro RomPager `Misfortune Cookie` Vulnerability
2014-12-23 00:00:00
prion
prion
Memory corruption
2014-12-24 18:59:00
ics
ics
Qualcomm Life Capsule
2018-08-28 12:00:00
metasploit
metasploit
Allegro Software RomPager 'Misfortune Cookie' (CVE-2014-9222) Authentication Bypass
2016-11-13 09:39:26
Allegro Software RomPager 'Misfortune Cookie' (CVE-2014-9222) Scanner
2014-12-19 01:21:26
canvas
canvas
Immunity Canvas: CVE_2014_9222
2014-12-24 18:59:00
thn
thn
Router Vulnerability Puts 12 Million Home and Business Routers at Risk
2014-12-19 02:18:00
cvelist
cvelist
CVE-2014-9222
2014-12-24 18:00:00
nessus
nessus
Allegro RomPager 4.07 < 4.34 Multiple Vulnerabilities (Misfortune Cookie)
2015-02-20 00:00:00
Allegro RomPager HTTP Cookie Management Remote Code Execution Vulnerability (Misfortune Cookie)
2014-12-30 00:00:00
Allegro RomPager HTTP Cookie Management Remote Code Execution Vulnerability (Misfortune Cookie)
2014-12-24 00:00:00
cert
cert
Multiple broadband routers use vulnerable versions of Allegro RomPager
2014-12-19 00:00:00
huawei
huawei
Security Advisory-Multiple Vulnerabilities in the RomPager Component of Home Gateway
2014-12-19 00:00:00
exploitpack
exploitpack
RomPager 4.34 (Multiple Router Vendors) - Misfortune Cookie Authentication Bypass
2016-04-27 00:00:00
packetstorm
packetstorm
RomPager 4.34 Authentication Bypass
2016-04-27 00:00:00
nmap
nmap
http-vuln-misfortune-cookie NSE Script
2015-05-31 18:34:22
exploitdb
exploitdb
RomPager 4.34 (Multiple Router Vendors) - &#039;Misfortune Cookie&#039; Authentication Bypass
2016-04-27 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.97 High

EPSS

Percentile

99.8%

JSON
Related for CVE-2014-9222
checkpoint_advisories1nvd1seebug2kitploit1threatpost2openvas1prion1ics1metasploit2canvas1thn1cvelist1nessus3cert1huawei1exploitpack1packetstorm1nmap1exploitdb1