Details of VAR-202103-1736

ID

VAR-202103-1736

TITLE

Samsung WLAN AP has weak password vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-08420

DESCRIPTION

Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of the end of 2008, 20 of Samsung's more than 30 companies have invested in China, including Samsung Electronics, Samsung SDI, Samsung SDS, and Samsung Electro-Mechanics. Samsung WLAN AP has a weak password vulnerability. Attackers can use this vulnerability to log in to the router backend to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-08420

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-08420

AFFECTED PRODUCTS

vendor:

samsung investment

model:

wlan ap

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-08420

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-08420
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-08420
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-08420

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-08420

Trust: 0.6

sources: CNVD: CNVD-2021-08420

SOURCES

db:

CNVD

id:

CNVD-2021-08420

LAST UPDATE DATE

2022-05-04T08:33:03.839000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-08420

date:

2021-02-02T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-08420

date:

2021-03-05T00:00:00