CVE-2014-0353 - Vulnerability Details

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allows remote attackers to bypass authentication by using %2F sequences in place of / (slash) characters.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Zyxel	N300 Netusb Nbg-419n N300 Netusb Nbg-419n Firmware

Configuration 1 [-]

AND

cpe:2.3:o:zyxel:n300_netusb_nbg-419n_firmware:1.00\(bfq_6\)c0:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:n300_netusb_nbg-419n:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.kb.cert.org/vuls/id/939260

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2014-04-15T10:00:00

Updated: 2024-08-06T09:13:10.242Z

Reserved: 2013-12-05T00:00:00

Link: CVE-2014-0353

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2014-04-15T10:55:11.963

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-0353

Redhat

No data.

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object