Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2014-8361 - CERT CVE
CVE-2014-8361
ID
CVE-2014-8361
Sažetak
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.
Reference
http://jvn.jp/en/jp/JVN47580234/index.html
http://jvn.jp/en/jp/JVN67456944/index.html
http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.html
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
http://www.securityfocus.com/bid/74330
http://www.zerodayinitiative.com/advisories/ZDI-15-155/
https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/
https://web.archive.org/web/20150909230440/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
https://www.exploit-db.com/exploits/37169/
http://jvn.jp/en/jp/JVN47580234/index.html
http://jvn.jp/en/jp/JVN67456944/index.html
http://packetstormsecurity.com/files/132090/Realtek-SDK-Miniigd-UPnP-SOAP-Command-Execution.html
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
http://www.securityfocus.com/bid/74330
http://www.zerodayinitiative.com/advisories/ZDI-15-155/
https://sensorstechforum.com/hinatabot-cve-2014-8361-ddos/
https://web.archive.org/web/20150909230440/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
https://www.exploit-db.com/exploits/37169/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-8361
CVSS
Base:
10.0
Impact:
10.0
Exploitability:
10.0
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
COMPLETE
COMPLETE
COMPLETE
CVSS vektor
AV:N/AC:L/Au:N/C:C/I:C/A:C
Zadnje važnije ažuriranje
21-04-2026 - 15:19
Objavljeno
01-05-2015 - 15:59
