Sign-up

ID

VAR-201706-0087


CVE

CVE-2016-7810


TITLE

CG-WLR300NX vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2016-000218

DESCRIPTION

Cross-site scripting vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors. CG-WLR300NX provided by Corega Inc is a wireless LAN router. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.An arbitrary script may be executed on the user's web browser. Corega CG-WLR300NX is prone to following security vulnerabilities: 1. A security bypass vulnerability 2. A cross-site request forgery vulnerability An attacker may exploit these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, bypass security restrictions or perform unauthorized actions. Other attacks may also be possible. Corega CG-WLR300NX 1.20 and prior are vulnerable

Trust: 1.98

sources: NVD: CVE-2016-7810 // JVNDB: JVNDB-2016-000218 // BID: 94248 // VULHUB: VHN-96630

AFFECTED PRODUCTS

vendor:coregamodel:cg-wlr300nxscope:lteversion:1.20

Trust: 1.0

vendor:coregamodel:cg-wlr300nxscope:lteversion:ver. 1.20

Trust: 0.8

vendor:coregamodel:cg-wlr300nxscope:eqversion:1.20

Trust: 0.6

vendor:coregamodel:inc cg-wlr300nxscope:eqversion:1.20

Trust: 0.3

vendor:coregamodel:inc cg-wlr300nxscope:eqversion:1.10

Trust: 0.3

vendor:coregamodel:inc cg-wlr300nxscope:eqversion:1.00

Trust: 0.3

vendor:coregamodel:inc cg-wlr300nxscope:neversion:1.30

Trust: 0.3

sources: BID: 94248 // JVNDB: JVNDB-2016-000218 // CNNVD: CNNVD-201611-351 // NVD: CVE-2016-7810

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2016-7810
value: MEDIUM

Trust: 1.0

IPA: JVNDB-2016-000218
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201611-351
value: LOW

Trust: 0.6

VULHUB: VHN-96630
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2016-7810
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

IPA: JVNDB-2016-000218
severity: LOW
baseScore: 2.7
vectorString: AV:A/AC:L/AU:S/C:N/I:P/A:N
accessVector: ADJACENT NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-96630
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2016-7810
baseSeverity: MEDIUM
baseScore: 4.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 1.7
impactScore: 2.7
version: 3.0

Trust: 1.0

IPA: JVNDB-2016-000218
baseSeverity: MEDIUM
baseScore: 4.3
vectorString: CVSS:3.0/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
attackVector: ADJACENT NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-96630 // JVNDB: JVNDB-2016-000218 // CNNVD: CNNVD-201611-351 // NVD: CVE-2016-7810

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-96630 // JVNDB: JVNDB-2016-000218 // NVD: CVE-2016-7810

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201611-351

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201611-351

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2016-000218

PATCH
title:About Multiple Vulnerabilities of CG-WLR300NXurl:http://corega.jp/support/security/20161111_wlr300nx.htm
Trust: 0.8
title:Corega CG-WLR300NX Fixes for cross-site scripting vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=65714
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2016-000218 // 
            
            
            
            CNNVD: CNNVD-201611-351

EXTERNAL IDS
db:JVNid:JVN92237169
Trust: 2.8
db:NVDid:CVE-2016-7810
Trust: 2.8
db:BIDid:94248
Trust: 2.0
db:JVNDBid:JVNDB-2016-000218
Trust: 0.8
db:CNNVDid:CNNVD-201611-351
Trust: 0.7
db:JVNid:JVN23823838
Trust: 0.3
db:JVNid:JVN23549283
Trust: 0.3
db:VULHUBid:VHN-96630
Trust: 0.1
sources:
            
            
            VULHUB: VHN-96630 // 
            
            
            
            BID: 94248 // 
            
            
            
            JVNDB: JVNDB-2016-000218 // 
            
            
            
            CNNVD: CNNVD-201611-351 // 
            
            
            
            NVD: CVE-2016-7810

REFERENCES
url:https://jvn.jp/en/jp/jvn92237169/index.html
Trust: 2.5
url:http://www.securityfocus.com/bid/94248
Trust: 1.7
url:http://corega.jp/support/security/20161111_wlr300nx.htm
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-7810
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2016-7810
Trust: 0.8
url:http://corega.jp/support/security/20151224_wlbaragm.htm
Trust: 0.3
url:http://corega.jp/support/security/20161111_wlr300nx.htm 
Trust: 0.3
url:http://jvn.jp/en/jp/jvn23549283/index.htmls
Trust: 0.3
url:http://jvn.jp/en/jp/jvn23823838/index.html 
Trust: 0.3
url:http://jvn.jp/en/jp/jvn92237169/index.html 
Trust: 0.3
sources:
            
            
            VULHUB: VHN-96630 // 
            
            
            
            BID: 94248 // 
            
            
            
            JVNDB: JVNDB-2016-000218 // 
            
            
            
            CNNVD: CNNVD-201611-351 // 
            
            
            
            NVD: CVE-2016-7810

CREDITS
Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc.
Trust: 0.9
sources:
            
            
            BID: 94248 // 
            
            
            
            CNNVD: CNNVD-201611-351

SOURCES
db:VULHUBid:VHN-96630
db:BIDid:94248
db:JVNDBid:JVNDB-2016-000218
db:CNNVDid:CNNVD-201611-351
db:NVDid:CVE-2016-7810

LAST UPDATE DATE
2025-04-20T23:25:01.710000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-96630date:2017-06-16T00:00:00
db:BIDid:94248date:2016-11-24T01:09:00
db:JVNDBid:JVNDB-2016-000218date:2018-01-17T00:00:00
db:CNNVDid:CNNVD-201611-351date:2017-06-12T00:00:00
db:NVDid:CVE-2016-7810date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:VULHUBid:VHN-96630date:2017-06-09T00:00:00
db:BIDid:94248date:2016-11-10T00:00:00
db:JVNDBid:JVNDB-2016-000218date:2016-11-11T00:00:00
db:CNNVDid:CNNVD-201611-351date:2016-11-17T00:00:00
db:NVDid:CVE-2016-7810date:2017-06-09T16:29:00.610