Remote Authentication Bypass in ASUS WL-330NUL Devices
CVE-2015-7787

4.3MEDIUM

Key Information:

Vendor
Asus
Status
Wl-330nul Firmware
Vendor
CVE Published:
30 December 2015

Summary

ASUS WL-330NUL devices with firmware earlier than version 3.0.0.42 are susceptible to a vulnerability that allows remote attackers to access the WPA2-PSK passphrase through unspecified methods. This could lead to unauthorized access to the network, potentially compromising sensitive data. Users are advised to update their firmware to the latest version to mitigate this risk.

References

http://jvn.jp/en/jp/JVN69462495/index.html
third-party-advisoryx_refsource_JVN
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000192
third-party-advisoryx_refsource_JVNDB
http://www.asus.com/jp/News/FX04LE8HN0qBoqFI
x_refsource_CONFIRM

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.