CVE-2012-4366
published 2012-11-20CVE-2012-4366: Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK…
PriorityP425low3.3CVSS 2.0
AVAACLAuNCPINAN
EXPLOIT
EPSS
4.58%
90.4th percentile
Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| belkin | n150_wireless_router | — | — |
| belkin | n300_wireless_router | — | — |
| belkin | n450_wireless_router | — | — |
| belkin | n900_wireless_router | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2c7m-mmf4-jwf3: The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier
ghsa_unreviewed·2022-05-17·CVSS 3.3
CVE-2012-6371 [LOW] GHSA-2c7m-mmf4-jwf3: The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier
The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading broadcast packets, a different vulnerability than CVE-2012-4366.
GHSA
GHSA-f446-wm48-q9x7: Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default
ghsa_unreviewed·2022-05-17
CVE-2012-4366 [LOW] GHSA-f446-wm48-q9x7: Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default
Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.htmlhttp://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/http://www.securityfocus.com/bid/56591https://exchange.xforce.ibmcloud.com/vulnerabilities/80157http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.htmlhttp://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/http://www.securityfocus.com/bid/56591https://exchange.xforce.ibmcloud.com/vulnerabilities/80157
2012-11-20
Published