Vulnerabilities > CVE-2019-3405 - Unspecified vulnerability in 360 360F5 Firmware 3.1.3.64296

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

360

NVD

Published: 2021-01-11

Updated: 2021-07-21

Summary

In the 3.1.3.64296 and lower version of 360F5, the third party can trigger the device to send a deauth frame by constructing and sending a specific illegal 802.11 Null Data Frame, which will cause other wireless terminals connected to disconnect from the wireless, so as to attack the router wireless by DoS. At present, the vulnerability has been effectively handled, and users can fix the vulnerability after updating the firmware version.

Vulnerable Configurations

Part	Description	Count
OS	360 360 360F5 Firmware - 360 360F5 Firmware 3.1.3.64296	2
Hardware	360 360 360F5 -	1

References

https://security.360.cn/News/news/id/246