Vulnerability Description
The management web interface on the Nisuta NS-WIR150NE router with firmware 5.07.41 and Nisuta NS-WIR300N router with firmware 5.07.36_NIS01 allows remote attackers to bypass authentication via a "Cookie: :language=en" HTTP header.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nisuta | Ns-Wir150Ne Firmware | 5.07.41 |
| Nisuta | Ns-Wir150Ne | - |
| Nisuta | Ns-Wir300N Firmware | 5.07.36_nis01 |
| Nisuta | Ns-Wir300N | - |
Related Weaknesses (CWE)
References
- http://www.ampliasecurity.com/advisories/AMPLIA-ARA050913.txtExploit
- http://www.ampliasecurity.com/advisories/nisuta-nswir150ne-nswir300n-wireless-roExploit
- http://www.ampliasecurity.com/advisories/AMPLIA-ARA050913.txtExploit
- http://www.ampliasecurity.com/advisories/nisuta-nswir150ne-nswir300n-wireless-roExploit
FAQ
What is CVE-2013-7282?
CVE-2013-7282 is a vulnerability with a CVSS score of 10.0 (HIGH). The management web interface on the Nisuta NS-WIR150NE router with firmware 5.07.41 and Nisuta NS-WIR300N router with firmware 5.07.36_NIS01 allows remote attackers to bypass authentication via a "Coo...
How severe is CVE-2013-7282?
CVE-2013-7282 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-7282?
Check the references section above for vendor advisories and patch information. Affected products include: Nisuta Ns-Wir150Ne Firmware, Nisuta Ns-Wir150Ne, Nisuta Ns-Wir300N Firmware, Nisuta Ns-Wir300N.