Remote Credential Exposure in I-O DATA DEVICE Firmware
CVE-2016-7814

7.5HIGH

Key Information:

Vendor

I-o Data Device, Inc.

Status
Ts-wrlp
Ts-wrla
Vendor
CVE Published:
9 June 2017

What is CVE-2016-7814?

The I-O DATA DEVICE TS-WRLP and TS-WRLA firmware versions 1.00.01 and earlier are susceptible to a vulnerability that allows remote attackers to gain access to authentication credentials through unspecified vectors. This security flaw can lead to unauthorized access, compromising the integrity and confidentiality of sensitive information within the affected devices.

Affected Version(s)

TS-WRLA firmware version 1.00.01 and earlier

TS-WRLP firmware version 1.00.01 and earlier

References

http://www.securityfocus.com/bid/94250
vdb-entryx_refsource_BID
http://www.iodata.jp/support/information/2016/ts-wrlap/
x_refsource_CONFIRM
https://jvn.jp/en/jp/JVN34103586/index.html
third-party-advisoryx_refsource_JVN

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2016-7814 : Remote Credential Exposure in I-O DATA DEVICE Firmware