Lucene search
HistoryFeb 03, 2012 - 4:05 a.m.
CVE-2012-0314
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.002
Percentile
59.6%
Multiple cross-site request forgery (CSRF) vulnerabilities on the eAccess Pocket WiFi (aka GP02) router before 2.00 with firmware 11.203.11.05.168 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) initialize settings or (2) reboot the device.
Affected configurations
Node
emobilepocket_wifi_firmwareRange≤11.203.11.05.168
emobilepocket_wifiRange≤2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| emobile | pocket_wifi_firmware | * | cpe:2.3:a:emobile:pocket_wifi_firmware:*:*:*:*:*:*:*:* |
| emobile | pocket_wifi | * | cpe:2.3:h:emobile:pocket_wifi:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2012-0314
2012-02-03 02:00:00
prion
prion
Cross site request forgery (csrf)
2012-02-03 04:05:00
cve
cve
CVE-2012-0314
2012-02-03 04:05:51
jvn
jvn
JVN#33021167: Pocket WiFi (GP02) vulnerable to cross-site request forgery
2012-02-01 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.002
Percentile
59.6%
Related for NVD:CVE-2012-0314