cbcvebase.

Cisco Linksys E4200 Firmware vulnerabilities

7 known vulnerabilities affecting cisco/linksys_e4200_firmware.

Total CVEs
7
CISA KEV
0
Public exploits
6
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH2MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2013-2678P2HIGHCVSS 8.1ExploitedPoCv1.0.052020-02-04
CVE-2013-2678 [HIGH] CWE-74 CVE-2013-2678: Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could al Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could allow remote attackers to obtain sensitive information or execute arbitrary code by sending a crafted URL request to the apply.cgi script using the submit_type parameter.
nvd
CVE-2013-2681P2CRITICALCVSS 9.8PoCv1.0.052020-02-05
CVE-2013-2681 [CRITICAL] CWE-287 CVE-2013-2681: Cisco Linksys E4200 1.0.05 Build 7 devices contain a Security Bypass Vulnerability which could allow Cisco Linksys E4200 1.0.05 Build 7 devices contain a Security Bypass Vulnerability which could allow remote attackers to gain unauthorized access.
nvd
CVE-2013-2680P3HIGHCVSS 7.5PoCv1.0.052020-02-05
CVE-2013-2680 [HIGH] CWE-312 CVE-2013-2680: Cisco Linksys E4200 1.0.05 Build 7 devices store passwords in cleartext allowing remote attackers to Cisco Linksys E4200 1.0.05 Build 7 devices store passwords in cleartext allowing remote attackers to obtain sensitive information.
nvd
CVE-2013-2683P3MEDIUMCVSS 5.3PoCv1.0.052020-02-06
CVE-2013-2683 [MEDIUM] CWE-200 CVE-2013-2683: Cisco Linksys E4200 1.0.05 Build 7 devices contain an Information Disclosure Vulnerability which all Cisco Linksys E4200 1.0.05 Build 7 devices contain an Information Disclosure Vulnerability which allows remote attackers to obtain private IP addresses and other sensitive information.
nvd
CVE-2013-5122P2CRITICALCVSS 9.8v2.0.362020-01-07
CVE-2013-5122 [CRITICAL] CWE-287 CVE-2013-5122: Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open whic Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access
nvd
CVE-2013-2684P3MEDIUMCVSS 6.1PoCv1.0.052020-02-06
CVE-2013-2684 [MEDIUM] CWE-79 CVE-2013-2684: Cross-site Scripting (XSS) in Cisco Linksys E4200 1.0.05 Build 7 devices allows remote attackers to Cross-site Scripting (XSS) in Cisco Linksys E4200 1.0.05 Build 7 devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2013-2682P4MEDIUMCVSS 4.3PoCv1.0.052020-02-05
CVE-2013-2682 [MEDIUM] CWE-1021 CVE-2013-2682: Cisco Linksys E4200 1.0.05 Build 7 devices contain a Clickjacking Vulnerability which allows remote Cisco Linksys E4200 1.0.05 Build 7 devices contain a Clickjacking Vulnerability which allows remote attackers to obtain sensitive information.
nvd
Cisco Linksys E4200 Firmware vulnerabilities | cvebase