CVE-2014-0343 — MEDIUM (4.9)

Vulnerability Description

The web interface on Virtual Access GW6110A routers with software 9.00 before 9.09.27, 9.50 before 9.50.21, and 10.00 before 10.00.21 allows remote authenticated users to gain privileges via a modified JavaScript variable.

CVSS Score

4.9

MEDIUM

AV:A/AC:M/Au:S/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Virtualaccess	Gw6110A Firmware	9.00
Virtualaccess	Gw6110A	-

References

http://www.kb.cert.org/vuls/id/213046US Government Resource
http://www.kb.cert.org/vuls/id/213046US Government Resource

FAQ

What is CVE-2014-0343?

CVE-2014-0343 is a vulnerability with a CVSS score of 4.9 (MEDIUM). The web interface on Virtual Access GW6110A routers with software 9.00 before 9.09.27, 9.50 before 9.50.21, and 10.00 before 10.00.21 allows remote authenticated users to gain privileges via a modifie...

How severe is CVE-2014-0343?

CVE-2014-0343 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-0343?

Check the references section above for vendor advisories and patch information. Affected products include: Virtualaccess Gw6110A Firmware, Virtualaccess Gw6110A.