Overview
- Description
- A vulnerability has been identified in the MR2600 router v1.0.18 and earlier that could allow an attacker within range of the wireless network to successfully brute force the WPS pin, potentially allowing them unauthorized access to a wireless network.
- Source
- psirt@lenovo.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Weaknesses
- psirt@lenovo.com
- CWE-287
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:motorola:mr2600:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B84EB38A-4235-4126-A8FC-0399980647B8",
"versionEndIncluding": "1.0.18"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:motorola:mr2600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "23CF30D0-9447-49F2-B33B-CA2BF24D6DD2"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]