Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv2

CVE-2012-4898

Published: 18/12/2012 Updated: 29/01/2013
CVSS v2 Base Score: 6.1 | Impact Score: 7.8 | Exploitability Score: 4.9
VMScore: 543
Vector: AV:N/AC:H/Au:N/C:C/I:P/A:N

Vulnerability Summary

Mesh OS prior to 7.9.1.1 on Tropos wireless mesh routers does not use a sufficient source of entropy for SSH keys, which makes it easier for man-in-the-middle malicious users to spoof a device or modify a client-server data stream by leveraging knowledge of a key from a product installation elsewhere.

Vulnerable Product Search on Vulmon Subscribe to Product

tropos mesh_os

tropos 4310_mobile_mesh_router -

tropos 1310_distrubution_automation_mesh_router -

tropos 3320_indoor_mesh_router -

tropos 3310_indoor_mesh_router -

tropos 1410_mesh_router -

tropos 6310_mesh_router -

tropos 1410_wireless_mesh_router -

tropos 6320_mesh_router -

References

CWE-310http://www.us-cert.gov/control_systems/pdf/ICSA-12-297-01.pdfhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673CVE-2024-36674CVE-2024-27348unspecifiedCVE-2024-24919CVE-2024-4870malicious code‎CVE-2024-2019hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook