4- CVE-2018-17009

Executive Summary

Informations
Name	CVE-2018-17009	First vendor Publication	2018-09-13
Vendor	Cve	Last vendor Modification	2018-10-29

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:N/I:N/A:P)
Cvss Base Score	4	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	8	Authentication	Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for wireless wlan_host_2g isolate.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17009

CWE : Common Weakness Enumeration

%	id	Name
100 %	CWE-20	Improper Input Validation

CPE : Common Platform Enumeration

Type	Description	Count
Hardware	Tp-Link Tl-wr886n cpe:/h:tp-link:tl-wr886n:-	1
Os	Tp-Link Tl-Wr886N Firmware cpe:/o:tp-link:tl-wr886n_firmware:7.0_1.1.0 cpe:/o:tp-link:tl-wr886n_firmware:6.0_2.3.4	2

Sources (Detail)

Source	Url
MISC	https://github.com/PAGalaxyLab/VulInfo/blob/master/TP-Link/WR886N/inetd_task_...

Alert History

If you want to see full details history, please login or register.

Date	Informations
2018-10-29 21:19:13	Multiple Updates
2018-09-14 13:20:38	First insertion

Type	Count
CWE ID(s)	1
CPE ID(s)	3
Sources(s)	1

Related	Severity
N/A

Facebook rss twitter linkedin mail

4- CVE-2018-17009

Executive Summary

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU