Details of VAR-202105-1630

ID

VAR-202105-1630

TITLE

Samsung WLAN AP has weak password vulnerability (CNVD-2021-30051)

Trust: 0.6

sources: CNVD: CNVD-2021-30051

DESCRIPTION

Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of the end of 2008, 20 of Samsung's more than 30 companies have invested in China, including Samsung Electronics, Samsung SDI, Samsung SDS, and Samsung Electro-Mechanics. Samsung WLAN AP has a command execution vulnerability. The attacker uses a weak password to log in to the background to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-30051

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-30051

AFFECTED PRODUCTS

vendor:

samsung investment

model:

wlan ap

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-30051

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-30051
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-30051
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-30051

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-30051

Trust: 0.6

sources: CNVD: CNVD-2021-30051

SOURCES

db:

CNVD

id:

CNVD-2021-30051

LAST UPDATE DATE

2022-05-04T09:55:13.218000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-30051

date:

2021-04-23T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-30051

date:

2021-05-25T00:00:00