Vulnerability Description
I-O DATA DEVICE HDL-A and HDL2-A devices with firmware 1.07 and earlier do not properly manage sessions, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iodata | Hdl2-A\/E | - |
| Iodata | Hdl2-Ah | - |
| Iodata | Hdl2-A Firmware | 1.07 |
| Iodata | Hdl-A\/E | - |
| Iodata | Hdl-Ah | - |
| Iodata | Hdl-As | - |
| Iodata | Hdl-A Firmware | <= 1.07 |
Related Weaknesses (CWE)
References
- http://jvn.jp/en/jp/JVN52509236/225184/index.html
- http://jvn.jp/en/jp/JVN52509236/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2013-000095
- http://rm2.iobb.net
- http://jvn.jp/en/jp/JVN52509236/225184/index.html
- http://jvn.jp/en/jp/JVN52509236/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2013-000095
- http://rm2.iobb.net
FAQ
What is CVE-2013-4712?
CVE-2013-4712 is a vulnerability with a CVSS score of 6.8 (MEDIUM). I-O DATA DEVICE HDL-A and HDL2-A devices with firmware 1.07 and earlier do not properly manage sessions, which allows remote attackers to obtain sensitive information or modify data via unspecified ve...
How severe is CVE-2013-4712?
CVE-2013-4712 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4712?
Check the references section above for vendor advisories and patch information. Affected products include: Iodata Hdl2-A\/E, Iodata Hdl2-Ah, Iodata Hdl2-A Firmware, Iodata Hdl-A\/E, Iodata Hdl-Ah.