Details of VAR-201606-0550

ID

VAR-201606-0550

TITLE

Fei Xun K2 wireless router exists unauthorized password modification vulnerability

Trust: 0.6

sources: CNVD: CNVD-2016-05154

DESCRIPTION

The Fixon K2 wireless router is a wireless router for home use. The Fixon K2 wireless router has an unauthorized password modification vulnerability. Allowing an attacker to exploit this vulnerability without having to log in to the management background can directly submit a packet request to modify the username and password, thereby modifying the username and password.

Trust: 0.6

sources: CNVD: CNVD-2016-05154

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2016-05154

AFFECTED PRODUCTS

vendor:

feixun data communication

model:

k2 a2

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2016-05154

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2016-05154
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2016-05154
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2016-05154

PATCH

title:

Feixun K2 Wireless Router

url:

https://www.cnvd.org.cn/patchinfo/show/74628

Trust: 0.6

sources: CNVD: CNVD-2016-05154

EXTERNAL IDS

db:

CNVD

id:

CNVD-2016-05154

Trust: 0.6

sources: CNVD: CNVD-2016-05154

SOURCES

db:

CNVD

id:

CNVD-2016-05154

LAST UPDATE DATE

2022-05-04T09:23:35.031000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2016-05154

date:

2016-12-26T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2016-05154

date:

2016-06-07T00:00:00