Details of VAR-202106-2019

ID

VAR-202106-2019

TITLE

Feiyuxing home smart router has logic flaw vulnerability (CNVD-2021-37568)

Trust: 0.6

sources: CNVD: CNVD-2021-37568

DESCRIPTION

Chengdu Feiyuxing Technology Co., Ltd. serves enterprise, commercial and home users, providing intelligent and easy-to-use network communication management equipment and innovative technology value-added services. Feiyuxing home intelligent routing has logic flaws and loopholes. Attackers can use this vulnerability to directly log in to the background of the system and operate to access any page in the background.

Trust: 0.6

sources: CNVD: CNVD-2021-37568

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-37568

AFFECTED PRODUCTS

vendor:

feiyuxing

model:

home intelligent road

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-37568

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-37568
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-37568
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-37568

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-37568

Trust: 0.6

sources: CNVD: CNVD-2021-37568

SOURCES

db:

CNVD

id:

CNVD-2021-37568

LAST UPDATE DATE

2022-05-04T10:25:20.976000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-37568

date:

2021-05-27T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-37568

date:

2021-06-27T00:00:00