Remote Access Bypass Vulnerability in I-O DATA DEVICE WFS-SR01 Firmware
CVE-2016-7807

7.5HIGH

Key Information:

Vendor

I-o Data Device, Inc.

Status
Wfs-sr01
Vendor
CVE Published:
9 June 2017

What is CVE-2016-7807?

The I-O DATA DEVICE WFS-SR01 firmware versions up to 1.10 comes with a significant vulnerability that allows remote attackers to bypass established access restrictions. This flaw facilitates unauthorized access to sensitive data stored on devices inserted into the WFS-SR01, which could lead to data compromise and other malicious activities. Organizations using affected firmware should prioritize immediate updates to safeguard against potential exploitation.

Affected Version(s)

WFS-SR01 firmware version 1.10 and earlier

References

https://jvn.jp/en/jp/JVN18228200/index.html
third-party-advisoryx_refsource_JVN
http://www.securityfocus.com/bid/94089
vdb-entryx_refsource_BID
http://www.iodata.jp/support/information/2016/wfs-sr01/
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2016-7807 : Remote Access Bypass Vulnerability in I-O DATA DEVICE WFS-SR01 Firmware