CVE-2014-8656

{"id": "CVE-2014-8656", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-06T15:55:10.913", "references": [{"url": "http://osvdb.org/show/osvdb/113836", "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.exploit-db.com/exploits/35075", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/show/osvdb/113836", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.exploit-db.com/exploits/35075", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-255"}]}], "descriptions": [{"lang": "en", "value": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH have a default password of (1) admin for the admin account and (2) compalbn for the root account, which makes it easier for remote attackers to obtain access to certain sensitive information via unspecified vectors."}, {"lang": "es", "value": "Compal Broadband Networks (CBN) CH6640E y CG6640E Wireless Gateway 1.0 con firmware CH6640-3.5.11.7-NOSH tienen una contrase\u00f1a por defecto de (1) admin para la cuenta de administraci\u00f3n y (2) compalbn para la cuenta del root, lo que facilita a atacantes remotos obtener el acceso a informaci\u00f3n sensible a trav\u00e9s de vectores no especificados."}], "lastModified": "2024-11-21T02:19:31.627", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E1B5054-F2D6-473E-80D3-5FE5A573350E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1249AF1-4F7F-4A9F-9950-DB9B6A162C9D"}, {"criteria": "cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "985486F0-4DFA-4201-B628-D4E43A4D1582"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}