Vulnerabilities > CVE-2013-4622 - Credentials Management vulnerability in HTC Droid Incredible Frf91

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

htc

CWE-255

NVD

Published: 2013-06-19

Updated: 2013-06-19

Summary

The 3G Mobile Hotspot feature on the HTC Droid Incredible has a default WPA2 PSK passphrase of 1234567890, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area.

Vulnerable Configurations

Part	Description	Count
Hardware	Htc HTC Droid Incredible - HTC Droid Incredible Frf91	2

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://support.verizonwireless.com/clc/devices/knowledge_base.html?id=35523
http://www1.cs.fau.de/filepool/projects/hotspot/hotspot.pdf