CVE-2014-0353 - OpenCVE

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allows remote attackers to bypass authentication by using %2F sequences in place of / (slash) characters.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

AV:A/AC:L/Au:N/C:C/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Zyxel	N300 Netusb Nbg-419n N300 Netusb Nbg-419n Firmware

Configuration 1 [-]

AND

cpe:2.3:o:zyxel:n300_netusb_nbg-419n_firmware:1.00\(bfq_6\)c0:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:n300_netusb_nbg-419n:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.kb.cert.org/vuls/id/939260

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2014-04-15T10:00:00

Updated: 2024-08-06T09:13:10.242Z

Reserved: 2013-12-05T00:00:00

Link: CVE-2014-0353

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2014-04-15T10:55:11.963

Modified: 2014-04-15T17:55:05.707

Link: CVE-2014-0353

Redhat

No data.

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object