CVE-2014-8654 - OpenCVE

Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote attackers to hijack the authentication of administrators for requests that (1) have unspecified impact on DDNS configuration via a request to basicDDNS.html, (2) change the wifi password via the psKey parameter to setWirelessSecurity.html, (3) add a static MAC address via the MacAddress parameter in an add_static action to setBasicDHCP1.html, or (4) enable or disable UPnP via the UPnP parameter in an apply action to setAdvancedOptions.html.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Compal Broadband Networks	Cg6640e Wireless Gateway Ch664oe Wireless Gateway Firmware

Configuration 1 [-]

AND

cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh:*:*:*:*:*:*:*

OR	cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0:::::::*
	cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0:::::::*

No data.

References

Link	Providers
http://osvdb.org/show/osvdb/113840
http://osvdb.org/show/osvdb/113841
http://osvdb.org/show/osvdb/113842
http://osvdb.org/show/osvdb/113843
http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html
http://www.exploit-db.com/exploits/35075
http://www.securityfocus.com/bid/70762
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/98329

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-11-06T15:00:00

Updated: 2024-08-06T13:26:02.358Z

Reserved: 2014-11-06T00:00:00

Link: CVE-2014-8654

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-11-06T15:55:10.803

Modified: 2017-09-08T01:29:26.637

Link: CVE-2014-8654

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-10-25T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote attackers to hijack the authentication of administrators for requests that (1) have unspecified impact on DDNS configuration via a request to basicDDNS.html, (2) change the wifi password via the psKey parameter to setWirelessSecurity.html, (3) add a static MAC address via the MacAddress parameter in an add_static action to setBasicDHCP1.html, or (4) enable or disable UPnP via the UPnP parameter in an apply action to setAdvancedOptions.html."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-07T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php"}, {"name": "70762", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/70762"}, {"name": "113843", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/show/osvdb/113843"}, {"name": "cbn-ch6640ecg6640e-csrf(98329)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98329"}, {"name": "113842", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/show/osvdb/113842"}, {"name": "113841", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/show/osvdb/113841"}, {"name": "35075", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/35075"}, {"name": "113840", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/show/osvdb/113840"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-8654", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote attackers to hijack the authentication of administrators for requests that (1) have unspecified impact on DDNS configuration via a request to basicDDNS.html, (2) change the wifi password via the psKey parameter to setWirelessSecurity.html, (3) add a static MAC address via the MacAddress parameter in an add_static action to setBasicDHCP1.html, or (4) enable or disable UPnP via the UPnP parameter in an apply action to setAdvancedOptions.html."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php", "refsource": "MISC", "url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php"}, {"name": "70762", "refsource": "BID", "url": "http://www.securityfocus.com/bid/70762"}, {"name": "113843", "refsource": "OSVDB", "url": "http://osvdb.org/show/osvdb/113843"}, {"name": "cbn-ch6640ecg6640e-csrf(98329)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98329"}, {"name": "113842", "refsource": "OSVDB", "url": "http://osvdb.org/show/osvdb/113842"}, {"name": "113841", "refsource": "OSVDB", "url": "http://osvdb.org/show/osvdb/113841"}, {"name": "35075", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/35075"}, {"name": "113840", "refsource": "OSVDB", "url": "http://osvdb.org/show/osvdb/113840"}, {"name": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T13:26:02.358Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php"}, {"name": "70762", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/70762"}, {"name": "113843", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/show/osvdb/113843"}, {"name": "cbn-ch6640ecg6640e-csrf(98329)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98329"}, {"name": "113842", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/show/osvdb/113842"}, {"name": "113841", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/show/osvdb/113841"}, {"name": "35075", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/35075"}, {"name": "113840", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/show/osvdb/113840"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-8654", "datePublished": "2014-11-06T15:00:00", "dateReserved": "2014-11-06T00:00:00", "dateUpdated": "2024-08-06T13:26:02.358Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh:*:*:*:*:*:*:*", "matchCriteriaId": "2E1B5054-F2D6-473E-80D3-5FE5A573350E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "D1249AF1-4F7F-4A9F-9950-DB9B6A162C9D", "vulnerable": true}, {"criteria": "cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "985486F0-4DFA-4201-B628-D4E43A4D1582", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote attackers to hijack the authentication of administrators for requests that (1) have unspecified impact on DDNS configuration via a request to basicDDNS.html, (2) change the wifi password via the psKey parameter to setWirelessSecurity.html, (3) add a static MAC address via the MacAddress parameter in an add_static action to setBasicDHCP1.html, or (4) enable or disable UPnP via the UPnP parameter in an apply action to setAdvancedOptions.html."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de CSRF en el hardware de Compal Broadband Networks CH6640E y CG6640E Wireless Gateway 1.0 con firmware CH6640-3.5.11.7-NOSH permiten a atacantes remotos secuestrar la autenticaci\u00f3n de administradores para solicitudes que (1) tienen un impacto no especificado sobre la configuraci\u00f3n DDNS a trav\u00e9s de una solicitud a basicDDNS.html, (2) cambian la contrase\u00f1a del wifi a trav\u00e9s del par\u00e1metro psKey en setWirelessSecurity.html, (3) a\u00f1aden una direcci\u00f3n MAC est\u00e1tica a trav\u00e9s del par\u00e1metro MacAddress en una acci\u00f3n add_static en setBasicDHCP1.html, o (4) habilitan o deshabilitan UPnP a trav\u00e9s del par\u00e1metro UPnP en una acci\u00f3n apply en setAdvancedOptions.html."}], "id": "CVE-2014-8654", "lastModified": "2017-09-08T01:29:26.637", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2014-11-06T15:55:10.803", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/show/osvdb/113840"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/show/osvdb/113841"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/show/osvdb/113842"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/show/osvdb/113843"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/35075"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/70762"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98329"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}