CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-10042

Authorization Bypass in the Web interface of Arcadyan SLT-00 Star* (aka Swisscom Internet-Box) devices before R7.7 allows unauthorized reconfiguration of the static routing table via an unauthenticated HTTP request, leading to denial of service and information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.swisscom.ch/content/dam/swisscom/de/about/nachhaltigkeit/digitale-schweiz/sicherheit/bug-bounty/files/cve-2016-10042.txt
https://www.swisscom.ch/content/dam/swisscom/de/about/nachhaltigkeit/digitale-schweiz/sicherheit/bug-bounty/files/cve-2016-10042.txt

Products affected by CVE-2016-10042

Arcadyan » Swisscom Internet-Box » Version: N/A

cpe:2.3:h:arcadyan:swisscom_internet-box:-
Arcadyan » Swisscom Internet-Box Firmware » Version: N/A

cpe:2.3:o:arcadyan:swisscom_internet-box_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10042

Products

Pricing

Contact Us