CVE-2014-8361

CVSS V2 High 10 CVSS V3 None
Description
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request.
Overview
  • CVE ID
  • CVE-2014-8361
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Modified
  • Published Version
  • 2015-05-01T15:59:01
  • Last Modified Date
  • 2023-04-26T18:55:30
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:d-link:dir-905l_firmware:*:*:*:*:*:*:*:* 1 OR 1.02
cpe:2.3:h:d-link:dir-905l:a1:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:d-link:dir-605l_firmware:*:*:*:*:*:*:*:* 1 OR 1.00 1.13
cpe:2.3:o:d-link:dir-605l_firmware:*:*:*:*:*:*:*:* 1 OR 2.00 2.04
cpe:2.3:h:d-link:dir-605l:a1:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:d-link:dir-605l:b1:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:d-link:dir-600l_firmware:*:*:*:*:*:*:*:* 1 OR 1.00 1.15
cpe:2.3:o:d-link:dir-600l_firmware:*:*:*:*:*:*:*:* 1 OR 2.00 2.05
cpe:2.3:h:d-link:dir-600l:a1:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:d-link:dir-600l:b1:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:a:realtek:realtek_sdk:-:*:*:*:*:*:*:* 1 OR
AND
cpe:2.3:o:d-link:dir-619l_firmware:*:*:*:*:*:*:*:* 1 OR 1.00 1.15
cpe:2.3:o:d-link:dir-619l_firmware:*:*:*:*:*:*:*:* 1 OR 2.00 2.03
cpe:2.3:h:d-link:dir-619l:a1:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:d-link:dir-619l:b1:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:d-link:dir-809_firmware:*:*:*:*:*:*:*:* 1 OR 1.00 1.02
cpe:2.3:h:d-link:dir-809:a1:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:d-link:dir-809:a2:*:*:*:*:*:*:* 0 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • COMPLETE
  • Integrity Impact
  • COMPLETE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 10
  • Severity
  • HIGH
  • Exploitability Score
  • 10
  • Impact Score
  • 10
History
Created Old Value New Value Data Type Notes
2022-05-10 07:16:36 Added to TrackCVE
2022-12-02 04:32:45 2015-05-01T15:59Z 2015-05-01T15:59:01 CVE Published Date updated
2022-12-02 04:32:45 2021-04-09T07:15:12 CVE Modified Date updated
2022-12-02 04:32:45 Modified Vulnerability Status updated
2023-04-26 19:02:50 2023-04-26T18:55:30 CVE Modified Date updated