CVE-2012-4366
Severity CVSS v4.0:
Pending analysis
Type:
CWE-310
Cryptographic Issues
Publication date:
20/11/2012
Last modified:
11/04/2025
Description
Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.
Impact
Base Score 2.0
3.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:* | ||
| cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:* | ||
| cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:* | ||
| cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html
- http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/
- http://www.securityfocus.com/bid/56591
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80157
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html
- http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/
- http://www.securityfocus.com/bid/56591
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80157