CVE-2005-2914

3 documents3 sources
Severity
7.5HIGH
EPSS
0.8%
top 26.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Linksys Wrt54g
Timeline
PublishedSep 14
Latest updateMay 1

Description

ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDlinksys/wrt54g2.04.4, 3.01.3, 3.03.6+2

🔴Vulnerability Details

2
GHSA
GHSA-gg55-qc78-2v7c: ezconfig2022-05-01
CVEList
CVE-2005-2914: ezconfig2005-09-14
CVE-2005-2914 (HIGH CVSS 7.5) | ezconfig.asp in Linksys WRT54G rout | cvebase.io