Details of VAR-201709-1244

ID

VAR-201709-1244

TITLE

Phenom K2 Wireless Router Has Logical Defect Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2017-20667

DESCRIPTION

Fizen Router Android App is an app for managing Fizen router. There is a logic flaw in the Phenom K2 wireless router. An attacker could use this vulnerability to obtain the router administrator username and password in an unlogged state, and then control the router.

Trust: 0.6

sources: CNVD: CNVD-2017-20667

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-20667

AFFECTED PRODUCTS

vendor:

feixun data communication

model:

routing android app

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2017-20667

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2017-20667
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2017-20667
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2017-20667

PATCH

title:

Phenom K2 Wireless Router Has Logical Defect Vulnerability

url:

https://www.cnvd.org.cn/patchinfo/show/98927

Trust: 0.6

sources: CNVD: CNVD-2017-20667

EXTERNAL IDS

db:

CNVD

id:

CNVD-2017-20667

Trust: 0.6

sources: CNVD: CNVD-2017-20667

SOURCES

db:

CNVD

id:

CNVD-2017-20667

LAST UPDATE DATE

2022-05-04T08:55:40.989000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2017-20667

date:

2017-08-27T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2017-20667

date:

2017-09-08T00:00:00