Vulnerabilities > CVE-2017-2162 - Unspecified vulnerability in Toshiba Flashair

CVSS 4.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

toshiba

NVD

Published: 2017-05-22

Updated: 2019-10-03

Summary

FlashAirTM SDHC Memory Card (SD-WE Series <W-03>) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series <W-02>) V2.00.04 and earlier allows default credentials to be set for wireless LAN connections to the product when enabling the PhotoShare function through a web browser.

Vulnerable Configurations

Part	Description	Count
Application	Toshiba Toshiba Flashair 1.00.06 Toshiba Flashair 1.02 Toshiba Flashair 3.0.2 Toshiba Flashair 1.00.03 Toshiba Flashair 1.00.04 Toshiba Flashair 2.00.03 Toshiba Flashair 2.00.04	7

References

https://jvn.jp/en/jp/JVN81820501/index.html
http://www.toshiba-personalstorage.net/news/20170516a.htm
http://jvndb.jvn.jp/jvndb/JVNDB-2017-000091