Vulnerabilities > Readynet Solutions

DATE CVE VULNERABILITY TITLE RISK
2015-12-31 CVE-2015-7282 Improper Input Validation vulnerability in Readynet Solutions Wrt300N-Dd and Wrt300N-Dd Firmware
ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.
network
low complexity
readynet-solutions CWE-20
5.8
2015-12-31 CVE-2015-7281 Cross-Site Request Forgery (CSRF) vulnerability in Readynet Solutions Wrt300N-Dd Firmware 1.0.26
Cross-site request forgery (CSRF) vulnerability on ReadyNet WRT300N-DD devices with firmware 1.0.26 allows remote attackers to hijack the authentication of arbitrary users.
network
low complexity
readynet-solutions CWE-352
8.8
2015-12-31 CVE-2015-7280 Credentials Management vulnerability in Readynet Solutions Wrt300N-Dd Firmware 1.0.26
The web administration interface on ReadyNet WRT300N-DD devices with firmware 1.0.26 has a default password of admin for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session.
network
low complexity
readynet-solutions CWE-255
critical
9.8