CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-2326

SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/432007/100/0/threaded
http://www.securityfocus.com/bid/9858
https://exchange.xforce.ibmcloud.com/vulnerabilities/26106
http://www.securityfocus.com/archive/1/432007/100/0/threaded
http://www.securityfocus.com/bid/9858
https://exchange.xforce.ibmcloud.com/vulnerabilities/26106

Products affected by CVE-2004-2326

Ip3 Networks » Ip3 Netaccess » Version: Any

cpe:2.3:h:ip3_networks:ip3_netaccess:*
Ip3 Networks » Ip3 Netaccess - Hospitality » Version: Any

cpe:2.3:h:ip3_networks:ip3_netaccess_-_hospitality:*
Ip3 Networks » Ip3 Netaccess - Wireless Hotspots » Version: Any

cpe:2.3:h:ip3_networks:ip3_netaccess_-_wireless_hotspots:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2326

Products

Pricing

Contact Us