CVE-2014-2046 - Unauthenticated Credential And Configuration Retrieval In Broadcom Ltd PIPA C211

Vulnerability title: Unauthenticated Credential And Configuration Retrieval In Broadcom Ltd PIPA C211 CVE: CVE-2014-2046 Vendor: Broadcom Ltd Product: PIPA C211 Affected version: Soft Rev: SR1.1, HW Rev: PIPA C211 rev2 Fixed version: N/A Reported by: Jerzy Kramarz Details: By sending a crafted PO...

CVE-2014-2046

cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote attackers to 1 obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or 2 modify the firmware via...

CVE-2014-2046

The CVE-2014-2046 issue affects Broadcom Ltd PIPA C211 (Soft Rev SR1.1, HW Rev C211 rev2). It arises from insufficient access restriction in the web interface (cgi-bin/rpcBridge v1.1), allowing unauthenticated remote retrieval of sensitive configuration data and credentials via a crafted POST to ...

CVE-2014-2046

cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote attackers to 1 obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or 2 modify the firmware via...