Lucene search

[email protected]CVE-2016-1325

HistoryMar 09, 2016 - 8:59 p.m.

CVE-2016-1325

2016-03-0920:59:02

CWE-200

[email protected]

web.nvd.nist.gov

cve-2016-1325

cisco

dpc3939b

dpc3941

remote attack

information disclosure

http request

vulnerability

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

The administration interface on Cisco DPC3939B and DPC3941 devices allows remote attackers to obtain sensitive information via a crafted HTTP request, aka Bug ID CSCus49506.

Affected configurations

NVD

Node

ciscodpc3939_wireless_residential_voice_gatewayMatch-

AND

ciscodpc3939_wireless_residential_voice_gateway_firmwareMatch130514acmcst_base

Node

ciscodpc3941_wireless_residential_voice_gatewayMatch-

AND

ciscodpc3939_wireless_residential_voice_gateway_firmwareMatch130514acmcst_base

CPENameOperatorVersion
cisco:dpc3939_wireless_residential_voice_gateway_firmwarecisco dpc3939 wireless residential voice gateway firmwareeq130514acmcst_base

CPE	Name	Operator	Version
cisco:dpc3939_wireless_residential_voice_gateway_firmware	cisco dpc3939 wireless residential voice gateway firmware	eq	130514acmcst_base

References

www.securityfocus.com/bid/84278

www.securitytracker.com/id/1035232

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-rgid

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

Related for CVE-2016-1325

nvd1 prion1 cvelist1 cisco1