Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-5990 | 6.8 |
Cross-site request forgery (CSRF) vulnerability on Belkin F9K1102 2 devices with firmware 2.10.17 allows remote attackers to hijack the authentication of arbitrary users.
|
31-12-2015 - 20:07 | 31-12-2015 - 16:59 | |
CVE-2015-5988 | 9.3 |
The web management interface on Belkin F9K1102 2 devices with firmware 2.10.17 has a blank password, which allows remote attackers to obtain administrative privileges by leveraging a LAN session.
|
31-12-2015 - 20:05 | 31-12-2015 - 16:59 | |
CVE-2015-5987 | 5.0 |
Belkin F9K1102 2 devices with firmware 2.10.17 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value. <a href="http://cwe.mitre.org/da
|
31-12-2015 - 20:03 | 31-12-2015 - 16:59 | |
CVE-2015-5989 | 10.0 |
Belkin F9K1102 2 devices with firmware 2.10.17 rely on client-side JavaScript code for authorization, which allows remote attackers to obtain administrative privileges via certain changes to LockStatus and Login_Success values.
|
31-12-2015 - 20:00 | 31-12-2015 - 16:59 |