CVE-2019-11321
Published Apr 18, 2019
Last updated 4 years ago
Overview
- Description
- An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router opens TCP port 8010. Users can send hnap requests to this port without authentication to obtain information such as the MAC addresses of connected client devices.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-306
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:motorola:cx2_firmware:1.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF718B80-C96A-4B0B-B364-A89034D98673"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:motorola:cx2:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E1EE290B-A77C-464F-AC0D-24A5A42D6EC5"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:motorola:m2_firmware:1.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "90D65B9F-52E4-4BD1-997C-69BA66E2BD52"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:motorola:m2:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "97CFCECE-3099-4852-8AA1-AADA2D148B19"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]