Vulnerability in Uboot Bootloader on Verizon Wireless Network Extender
CVE-2013-4875

Currently unrated

Key Information:

Vendor: Verizon
Status: Wireless Network Extender
Vendor: CVE Published:; 18 July 2013

What is CVE-2013-4875?

The Uboot bootloader present in the Verizon Wireless Network Extender SCS-2U01 is susceptible to a vulnerability that enables physically proximate attackers to circumvent the standard boot sequence. Attackers can exploit this vulnerability by connecting a specially crafted HDMI cable to the device and issuing a SysReq interrupt. This manipulation leads to an unintended login prompt, providing unauthorized access to the device.

References

http://www.kb.cert.org/vuls/id/BLUU-997M5B

x_refsource_MISC

http://www.kb.cert.org/vuls/id/458007

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/61169

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 18, 2013
Vulnerability Reserved
Jul 18, 2013

CVE-2013-4875 Data

JSON