CVE-2013-7282
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
10/01/2014
Last modified:
11/04/2025
Description
The management web interface on the Nisuta NS-WIR150NE router with firmware 5.07.41 and Nisuta NS-WIR300N router with firmware 5.07.36_NIS01 allows remote attackers to bypass authentication via a "Cookie: :language=en" HTTP header.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:nisuta:ns-wir150ne_firmware:5.07.41:*:*:*:*:*:*:* | ||
| cpe:2.3:h:nisuta:ns-wir150ne:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:nisuta:ns-wir300n_firmware:5.07.36_nis01:*:*:*:*:*:*:* | ||
| cpe:2.3:h:nisuta:ns-wir300n:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.ampliasecurity.com/advisories/AMPLIA-ARA050913.txt
- http://www.ampliasecurity.com/advisories/nisuta-nswir150ne-nswir300n-wireless-router-remote-management-web-interface-authentication-bypass-vulnerability.html
- http://www.ampliasecurity.com/advisories/AMPLIA-ARA050913.txt
- http://www.ampliasecurity.com/advisories/nisuta-nswir150ne-nswir300n-wireless-router-remote-management-web-interface-authentication-bypass-vulnerability.html