// For flags

CVE-2014-8243

 

Severity Score

3.3
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain the administrator's MD5 password hash via a direct request for the /.htpasswd URI.

Linksys SMART WiFi firmware en los dispositivos EA2700 y EA3500; anterior a 2.1.41 build 162351 en los dispositivos E4200v2 y EA4500; anterior a 1.1.41 build 162599 en los dispositivos EA6200; anterior a 1.1.40 build 160989 en los dispositivos EA6300, EA6400, EA6500, y EA6700 devices; y anterior a 1.1.42 build 161129 en los dispositivos EA6900 permite a atacantes remotos obtener el hash de la contraseña MD5 del administrador a través de una solicitud directa para la URI /.htpasswd.

*Credits: N/A
CVSS Scores
Attack Vector
Adjacent
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-10-12 CVE Reserved
  • 2014-11-01 CVE Published
  • 2024-08-06 CVE Updated
  • 2024-08-06 First Exploit
  • 2024-10-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-310: Cryptographic Issues
CAPEC
References (1)
URL Tag Source
URL Date SRC
http://www.kb.cert.org/vuls/id/447516 2024-08-06
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linksys
Search vendor "Linksys"
Ea4500 Firmware
Search vendor "Linksys" for product "Ea4500 Firmware"
<= 2.0.14212.1
Search vendor "Linksys" for product "Ea4500 Firmware" and version " <= 2.0.14212.1"
-
Affected
in Linksys
Search vendor "Linksys"
Ea4500
Search vendor "Linksys" for product "Ea4500"
--
Affected
Linksys
Search vendor "Linksys"
Ea6500 Firmware
Search vendor "Linksys" for product "Ea6500 Firmware"
<= 1.1.40
Search vendor "Linksys" for product "Ea6500 Firmware" and version " <= 1.1.40"
153731
Affected
in Linksys
Search vendor "Linksys"
Ea6500
Search vendor "Linksys" for product "Ea6500"
--
Affected
Linksys
Search vendor "Linksys"
Ea6400 Firmware
Search vendor "Linksys" for product "Ea6400 Firmware"
<= 1.1.40
Search vendor "Linksys" for product "Ea6400 Firmware" and version " <= 1.1.40"
153731
Affected
in Linksys
Search vendor "Linksys"
Ea6400
Search vendor "Linksys" for product "Ea6400"
--
Affected
Linksys
Search vendor "Linksys"
E4200v2 Firmware
Search vendor "Linksys" for product "E4200v2 Firmware"
<= 2.0.14212.1
Search vendor "Linksys" for product "E4200v2 Firmware" and version " <= 2.0.14212.1"
-
Affected
in Linksys
Search vendor "Linksys"
E4200v2
Search vendor "Linksys" for product "E4200v2"
--
Affected
Linksys
Search vendor "Linksys"
Ea6300 Firmware
Search vendor "Linksys" for product "Ea6300 Firmware"
<= 1.1.40
Search vendor "Linksys" for product "Ea6300 Firmware" and version " <= 1.1.40"
153731
Affected
in Linksys
Search vendor "Linksys"
Ea6300
Search vendor "Linksys" for product "Ea6300"
--
Affected
Linksys
Search vendor "Linksys"
Ea6900 Firmware
Search vendor "Linksys" for product "Ea6900 Firmware"
<= 1.1.42
Search vendor "Linksys" for product "Ea6900 Firmware" and version " <= 1.1.42"
158863
Affected
in Linksys
Search vendor "Linksys"
Ea6900
Search vendor "Linksys" for product "Ea6900"
--
Affected
Linksys
Search vendor "Linksys"
Ea2700 Firmware
Search vendor "Linksys" for product "Ea2700 Firmware"
<= 2.0.14294
Search vendor "Linksys" for product "Ea2700 Firmware" and version " <= 2.0.14294"
-
Affected
in Linksys
Search vendor "Linksys"
Ea2700
Search vendor "Linksys" for product "Ea2700"
--
Affected
Linksys
Search vendor "Linksys"
Ea3500 Firmware
Search vendor "Linksys" for product "Ea3500 Firmware"
<= 2.0.14294
Search vendor "Linksys" for product "Ea3500 Firmware" and version " <= 2.0.14294"
-
Affected
in Linksys
Search vendor "Linksys"
Ea3500
Search vendor "Linksys" for product "Ea3500"
--
Affected
Linksys
Search vendor "Linksys"
Ea6200 Firmware
Search vendor "Linksys" for product "Ea6200 Firmware"
<= 1.1.41
Search vendor "Linksys" for product "Ea6200 Firmware" and version " <= 1.1.41"
153743
Affected
in Linksys
Search vendor "Linksys"
Ea6200
Search vendor "Linksys" for product "Ea6200"
--
Affected
Linksys
Search vendor "Linksys"
Ea6700 Firmware
Search vendor "Linksys" for product "Ea6700 Firmware"
<= 1.1.40
Search vendor "Linksys" for product "Ea6700 Firmware" and version " <= 1.1.40"
153731
Affected
in Linksys
Search vendor "Linksys"
Ea6700
Search vendor "Linksys" for product "Ea6700"
--
Affected