Insecure WPA2-PSK Default Passphrase in Belkin Wireless Routers
CVE-2012-4366

Currently unrated

Key Information:

Vendor: Belkin
Status: N300 Wireless Router; N450 Wireless Router; N150 Wireless Router; N900 Wireless Router
Vendor: CVE Published:; 20 November 2012

What is CVE-2012-4366?

Belkin wireless routers, including the Surf N150, N900, N450, and N300 models, configure a predictable default WPA2-PSK passphrase based on an eight-digit segment of the WAN MAC address. This vulnerability enables remote attackers to infiltrate the network by capturing the beacon frames broadcasted by the router, compromising network security and potentially allowing unauthorized access to sensitive information.

References

http://archives.neohapsis.com/archives/bugtraq/2012-11/00...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/56591

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/80157

vdb-entryx_refsource_XF

EPSS Score

7% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2012
Vulnerability Reserved
Aug 21, 2012