CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4504

The UPnP IGD implementation in the Pseudo ICS UPnP software on the ZyXEL P-330W allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.kb.cert.org/vuls/id/357851
http://www.upnp-hacks.org/suspect.html
http://www.kb.cert.org/vuls/id/357851
http://www.upnp-hacks.org/suspect.html

Products affected by CVE-2011-4504

Genmei Mori » Pseudoics » Version: 0.1

cpe:2.3:a:genmei_mori:pseudoics:0.1
Genmei Mori » Pseudoics » Version: 0.2

cpe:2.3:a:genmei_mori:pseudoics:0.2
Genmei Mori » Pseudoics » Version: 0.3

cpe:2.3:a:genmei_mori:pseudoics:0.3
Zyxel » P-330w Router » Version: Any

cpe:2.3:h:zyxel:p-330w_router:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4504

Products

Pricing

Contact Us