Vulnerability Details CVE-2002-0396
The web management server for Red-M 1050 (Bluetooth Access Point) does not use session-based credentials to authenticate users, which allows attackers to connect to the server from the same IP address as a user who has already established a session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.2%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.atstake.com/research/advisories/2002/a060502-1.txt
- http://www.securityfocus.com/bid/4940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9265
- http://www.atstake.com/research/advisories/2002/a060502-1.txt
- http://www.securityfocus.com/bid/4940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9265
Products affected by CVE-2002-0396
-
cpe:2.3:h:red-m:1050ap_lan_acess_point:*