CVE-2014-2359 — MEDIUM (5.9)

Vulnerability Description

OleumTech Wireless Sensor Network devices allow remote attackers to obtain sensitive information about sensor nodes or spoof devices by reading cleartext protocol data.

CVSS Score

5.9

MEDIUM

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Oleumtech	Ft1 Firmware	-
Oleumtech	Ft1	-
Oleumtech	Ad1 Firmware	-
Oleumtech	Ad1	-

Related Weaknesses (CWE)

CWE-200

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94788Third Party AdvisoryVDB Entry
https://ioactive.com/pdfs/IOActive_Advisory_OleumTech.pdfBroken LinkThird Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/94788Third Party AdvisoryVDB Entry
https://ioactive.com/pdfs/IOActive_Advisory_OleumTech.pdfBroken LinkThird Party Advisory

FAQ

What is CVE-2014-2359?

CVE-2014-2359 is a vulnerability with a CVSS score of 5.9 (MEDIUM). OleumTech Wireless Sensor Network devices allow remote attackers to obtain sensitive information about sensor nodes or spoof devices by reading cleartext protocol data.

How severe is CVE-2014-2359?

CVE-2014-2359 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-2359?

Check the references section above for vendor advisories and patch information. Affected products include: Oleumtech Ft1 Firmware, Oleumtech Ft1, Oleumtech Ad1 Firmware, Oleumtech Ad1.