CVE-2013-4876 : The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for

The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for physically proximate attackers to obtain administrative access by leveraging a login prompt.

Published 2013-07-18 16:51:40

Updated 2013-07-19 04:00:00

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2013-4876

Probability of exploitation activity in the next 30 days: 0.06%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 25 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2013-4876

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.2	MEDIUM	AV:L/AC:H/Au:N/C:C/I:C/A:C	1.9	10.0	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2013-4876

CWE-255

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-4876

http://www.kb.cert.org/vuls/id/BLUU-997M5B

VU#458007 - Verizon Wireless Network Extender multiple vulnerabilities
US Government Resource

CVEs referencing this url
http://www.kb.cert.org/vuls/id/458007

VU#458007 - Verizon Wireless Network Extender multiple vulnerabilities
US Government Resource

CVEs referencing this url

Products affected by CVE-2013-4876

Verizon » Wireless Network Extender » Version: Scs-2u01
cpe:2.3:h:verizon:wireless_network_extender:scs-2u01:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2013-4876

Exploit prediction scoring system (EPSS) score for CVE-2013-4876

CVSS scores for CVE-2013-4876

CWE ids for CVE-2013-4876

References for CVE-2013-4876

Products affected by CVE-2013-4876