CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2274

The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to (1) lan_status_adv.asp, (2) wlan_basic_cfg.asp, or (3) lancfg.asp in en/, related to use of JavaScript to protect against reading file contents.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.5%

CVSS Severity

CVSS v2 Score 7.8

References

http://secunia.com/advisories/35638
http://www.securityfocus.com/archive/1/504645/100/0/threaded
http://secunia.com/advisories/35638
http://www.securityfocus.com/archive/1/504645/100/0/threaded

Products affected by CVE-2009-2274

Huawei » D100 » Version: N/A

cpe:2.3:h:huawei:d100:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2274

Products

Pricing

Contact Us