CVE-2015-8263

EUVD-2015-8151
NETGEAR WNR1000v3 devices with firmware 1.0.2.68 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
netgearwnr1000v3_firmware
1.0.2.68
netgearwnr1000v3
*
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/78873
https://www.kb.cert.org/vuls/id/403568
http://www.securityfocus.com/bid/78873
https://www.kb.cert.org/vuls/id/403568