Airport Extreme Security Vulnerabilities and Issues — Airport Extreme CVE List

Lucene search

AppleAirport Extreme

7 matches found

CVE•added 2010/12/22 3:0 a.m.•49 views

CVE-2009-2189

The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of (1) Router Advertisement and (2) Neighbor Discovery packets, which allows remote attackers to cause a denial of service (resource...

6.1CVSS6.5AI score0.00283EPSS

CVE•added 2005/05/02 4:0 a.m.•43 views

CVE-2005-0289

Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service (WDS), allows remote attackers to cause a denial of service (device freeze) by connecting to UDP port 161 and before link-state change occurs.

5CVSS6.6AI score0.00911EPSS

CVE•added 2006/01/05 11:0 p.m.•43 views

CVE-2005-3714

The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service (unresponsive interface) via malformed packets.

5CVSS6.3AI score0.01271EPSS

CVE•added 2007/03/08 10:19 p.m.•41 views

CVE-2007-1338

The default configuration of the AirPort utility in Apple AirPort Extreme creates an IPv6 tunnel but does not enable the "Block incoming IPv6 connections" setting, which might allow remote attackers to bypass intended access restrictions by establishing IPv6 sessions that would have been rejected o...

7.5CVSS6.3AI score0.00449EPSS

CVE•added 2010/12/22 3:0 a.m.•40 views

CVE-2010-1804

Unspecified vulnerability in the network bridge functionality on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 allows remote attackers to cause a denial of service (networking outage) via a crafted DHCP reply.

7.1CVSS6.4AI score0.00932EPSS

CVE•added 2010/12/22 3:0 a.m.•38 views

CVE-2010-0039

The Application-Level Gateway (ALG) on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 modifies PORT commands in incoming FTP traffic, which allows remote attackers to use the device's IP address for arbitrary intranet TCP traffic by...

2.6CVSS6.8AI score0.00307EPSS

CVE•added 2010/03/10 10:30 p.m.•34 views

CVE-2010-0962

The FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule with firmware 7.5 does not restrict the IP address and port specified in a PORT command from a client, which allows remote attackers to leverage intranet FTP servers for arbitrary TCP forwarding via a crafted PORT comm...

5CVSS6.7AI score0.00357EPSS