CVE-2014-8244

CWE-200Information Exposure4 documents4 sources
Severity
7.5HIGH
EPSS
9.2%
top 7.31%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Linksys E4200v2 FirmwareLinksys Ea2700 FirmwareLinksys Ea3500 Firmware+7 more
Timeline
PublishedNov 1
Latest updateMay 17

Description

Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain sensitive information or modify data via a JNAP action in a JNAP/ HTTP request.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages10 packages

NVDlinksys/ea4500_firmware2.0.14212.1

Patches

Patch: www.kb.cert.orgPatch: www.kb.cert.org

🔴Vulnerability Details

3
GHSA
GHSA-w67x-x69g-q4hv: Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 22022-05-17
CVEList
CVE-2014-8244: Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 22014-11-01
VulnCheck
linksys ea3500_firmware Exposure of Sensitive Information to an Unauthorized Actor2014
CVE-2014-8244 (HIGH CVSS 7.5) | Linksys SMART WiFi firmware on EA27 | cvebase.io