Vulnerabilities > CVE-2014-8496 - Credentials Management vulnerability in Digicom Dg-5514T Adsl Router Firmware 3.2

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
digicom
CWE-255
critical

Summary

Digicom DG-5514T ADSL router with firmware 3.2 generates predictable session IDs, which allows remote attackers to gain administrator privileges via a brute force session hijacking attack.

Vulnerable Configurations

Part Description Count
OS
Digicom
1
Hardware
Digicom
1

Common Weakness Enumeration (CWE)