Lucene search

[email protected]NVD:CVE-2014-1408

HistoryJan 10, 2014 - 4:47 p.m.

CVE-2014-1408

2014-01-1016:47:06

CWE-255

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.1 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.9%

JSON

The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via an HTTP request, as demonstrated by stored XSS attacks.

Affected configurations

NVD

Node

conceptronicc54apm_firmwareMatch1.26

AND

conceptronicc54apmMatchv2

References

antoniovazquezblanco.github.io/docs/advisories/Advisory_C54APM_Multiple.pdf

download.conceptronic.net/manuals/C04-058_C54APM_v2.0_Quick_Guide_ML.pdf

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.1 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.9%

JSON

Related for NVD:CVE-2014-1408

prion1 cvelist1 cve1