ID
VAR-201401-0729
TITLE
Motorola WiMAX CPEi25890 'nextpage' Parameter Clear Text Wireless Ciphertext Disclosure Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2014-00542
DESCRIPTION
The Motorola WiMAX CPEi25890 is a WiMax cat released by Motorola. A security vulnerability exists in the Motorola WiMAX CPEi25890 /cgi-bin/f1_fcgi_cgi.fcgi script. When /etc/www/html/wifi/wifi_security.html is called via the 'nextpage' parameter, the wireless plaintext ciphertext is leaked to an attacker who can conduct a man-in-the-middle attack, causing sensitive information to leak.
Trust: 0.6
sources:
CNVD: CNVD-2014-00542
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2014-00542
AFFECTED PRODUCTS
| vendor: | motorola | model: | wimax cpei25890 wmx04.00.01.02.23 | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2014-00542
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2014-00542
PATCH
| title: | Motorola WiMAX CPEi25890 'nextpage' parameter patch for plaintext wireless ciphertext leak vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/42843 | Trust: 0.6 |
sources:
CNVD: CNVD-2014-00542
EXTERNAL IDS
| db: | OSVDB | id: | 102277 | Trust: 0.6 |
| db: | CNVD | id: | CNVD-2014-00542 | Trust: 0.6 |
sources:
CNVD: CNVD-2014-00542
REFERENCES
| url: | http://osvdb.org/show/osvdb/102277 | Trust: 0.6 |
sources:
CNVD: CNVD-2014-00542
SOURCES
| db: | CNVD | id: | CNVD-2014-00542 |
LAST UPDATE DATE
2022-05-17T01:46:34.519000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2014-00542 | date: | 2014-01-23T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2014-00542 | date: | 2014-01-23T00:00:00 |