CVE-2014-8361 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 99%

Vendor	Product	Version
dlink	dir-905l_firmware	𝑥 ≤ 2.05b01
dlink	dir-605l_firmware	𝑥 ≤ 1.14b06
dlink	dir-600l_firmware	𝑥 ≤ 1.15
dlink	dir-619l_firmware	𝑥 ≤ 1.15
dlink	dir-619l_firmware	𝑥 ≤ 2.07b02
dlink	dir-605l_firmware	𝑥 ≤ 2.07b02
dlink	dir-605l_firmware	𝑥 ≤ 3.03b07
dlink	dir-600l_firmware	𝑥 ≤ 2.056b06
dlink	dir-809_firmware	𝑥 ≤ 1.04b02
dlink	dir-900l_firmware	𝑥 < 1.15b01
realtek	realtek_sdk	-
dlink	dir-501_firmware	𝑥 ≤ 1.01b04
dlink	dir-515_firmware	𝑥 ≤ 1.01b04
dlink	dir-615_firmware	10.01b02:b02
dlink	dir-615_firmware	𝑥 ≤ 6.06b03
aterm	wg1900hp2_firmware	𝑥 ≤ 1.3.1
aterm	wg1900hp_firmware	𝑥 ≤ 2.5.1
aterm	wg1800hp4_firmware	𝑥 ≤ 1.3.1
aterm	wg1800hp3_firmware	𝑥 ≤ 1.5.1
aterm	wg1200hs2_firmware	𝑥 ≤ 2.5.0
aterm	wg1200hp3_firmware	𝑥 ≤ 1.3.1
aterm	wg1200hp2_firmware	𝑥 ≤ 2.5.0
aterm	w1200ex_firmware	𝑥 ≤ 1.3.1
aterm	w1200ex-ms_firmware	𝑥 ≤ 1.3.1
aterm	wg1200hs_firmware	*
aterm	wg1200hp_firmware	*
aterm	wf800hp_firmware	*
aterm	wf300hp2_firmware	*
aterm	wr8165n_firmware	*
aterm	w500p_firmware	*
aterm	w300p_firmware	*

𝑥

= Vulnerable software versions

References

http://jvn.jp/en/jp/JVN47580234/index.html

http://jvn.jp/en/jp/JVN67456944/index.html

http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.html

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055

http://www.securityfocus.com/bid/74330

http://www.zerodayinitiative.com/advisories/ZDI-15-155/

https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/

https://web.archive.org/web/20150909230440/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055

https://www.exploit-db.com/exploits/37169/

http://jvn.jp/en/jp/JVN47580234/index.html

http://jvn.jp/en/jp/JVN67456944/index.html

http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.html

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055

http://www.securityfocus.com/bid/74330

http://www.zerodayinitiative.com/advisories/ZDI-15-155/

https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/

https://web.archive.org/web/20150909230440/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055

https://www.exploit-db.com/exploits/37169/