Vulnerability Details CVE-2013-3064
Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.0%
CVSS Severity
CVSS v2 Score 6.8
References
- http://securityevaluators.com/knowledge/case_studies/routers/Vulnerability_Catalog.pdf
- http://securityevaluators.com/knowledge/case_studies/routers/linksys_ea6500.php
- http://securityevaluators.com/knowledge/case_studies/routers/Vulnerability_Catalog.pdf
- http://securityevaluators.com/knowledge/case_studies/routers/linksys_ea6500.php
Products affected by CVE-2013-3064
-
cpe:2.3:h:linksys:ea6500:-
-
cpe:2.3:o:linksys:ea6500_firmware:1.1.28.147876