CVE-2014-0353 - OpenCVE

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allows remote attackers to bypass authentication by using %2F sequences in place of / (slash) characters.

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

AV:A/AC:L/Au:N/C:C/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Zyxel	N300 Netusb Nbg-419n Firmware N300 Netusb Nbg-419n

Configuration 1 [-]

AND

cpe:2.3:o:zyxel:n300_netusb_nbg-419n_firmware:1.00\(bfq_6\)c0:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:n300_netusb_nbg-419n:-:*:*:*:*:*:*:*

References

Link	Resource
http://www.kb.cert.org/vuls/id/939260	US Government Resource

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: certcc

Published: 2014-04-15T10:00:00

Updated: 2014-04-15T03:57:00

Reserved: 2013-12-05T00:00:00

Link: CVE-2014-0353

JSON object: View

NVD Information

Status : Analyzed

Published: 2014-04-15T10:55:11.963

Modified: 2014-04-15T17:55:05.707

Link: CVE-2014-0353

JSON object: View

Redhat Information

No data.

CWE

CWE-287