cvelistv5 - CVE-2012-4366

CVE-2012-4366 (GCVE-0-2012-4366)

Vulnerability from cvelistv5 – Published: 2012-11-20 00:00 – Updated: 2024-08-06 20:35

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://archives.neohapsis.com/archives/bugtraq/20…	mailing-listx_refsource_BUGTRAQ
	http://www.securityfocus.com/bid/56591	vdb-entryx_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.jakoblell.com/blog/2012/11/19/cve-2012…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T20:35:09.094Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20121119 CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
          },
          {
            "name": "56591",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/56591"
          },
          {
            "name": "belkin-wireless-security-bypass(80157)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-11-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20121119 CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
        },
        {
          "name": "56591",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/56591"
        },
        {
          "name": "belkin-wireless-security-bypass(80157)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2012-4366",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20121119 CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
            },
            {
              "name": "56591",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/56591"
            },
            {
              "name": "belkin-wireless-security-bypass(80157)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
            },
            {
              "name": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/",
              "refsource": "MISC",
              "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2012-4366",
    "datePublished": "2012-11-20T00:00:00",
    "dateReserved": "2012-08-21T00:00:00",
    "dateUpdated": "2024-08-06T20:35:09.094Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79D38126-4680-4AEE-A964-BAA80EBAE31B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8E3A656-1727-4BFE-A1FB-738F92AD64B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E491CAA9-8290-48BC-A6E0-D5360A527039\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"866A8962-B81E-4CF0-A6AC-3FE78729C621\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.\"}, {\"lang\": \"es\", \"value\": \"Los enrutadores inal\\u00e1mbricos Belkin Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, y N300 Model F7D2301v1, generan un valor predeterminado previsible WPA2-PSK basado en la direcci\\u00f3n MAC, que permite a atacantes remotos acceder a la red esnifando de las tramas de beacon.\"}]",
      "id": "CVE-2012-4366",
      "lastModified": "2024-11-21T01:42:45.723",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:A/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 3.3, \"accessVector\": \"ADJACENT_NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 6.5, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2012-11-20T00:55:01.010",
      "references": "[{\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/56591\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/80157\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/56591\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/80157\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-310\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-4366\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-11-20T00:55:01.010\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.\"},{\"lang\":\"es\",\"value\":\"Los enrutadores inal\u00e1mbricos Belkin Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, y N300 Model F7D2301v1, generan un valor predeterminado previsible WPA2-PSK basado en la direcci\u00f3n MAC, que permite a atacantes remotos acceder a la red esnifando de las tramas de beacon.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":3.3,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.5,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-310\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79D38126-4680-4AEE-A964-BAA80EBAE31B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8E3A656-1727-4BFE-A1FB-738F92AD64B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E491CAA9-8290-48BC-A6E0-D5360A527039\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"866A8962-B81E-4CF0-A6AC-3FE78729C621\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/56591\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/80157\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/56591\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/80157\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-F446-WM48-Q9X7

Vulnerability from github – Published: 2022-05-17 01:42 – Updated: 2025-04-11 04:05

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2012-4366"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2012-11-20T00:55:00Z",
    "severity": "LOW"
  },
  "details": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.",
  "id": "GHSA-f446-wm48-q9x7",
  "modified": "2025-04-11T04:05:00Z",
  "published": "2022-05-17T01:42:17Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4366"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
    },
    {
      "type": "WEB",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
    },
    {
      "type": "WEB",
      "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/56591"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2012-4366

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2012-4366

Aliases

CVE-2012-4366

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-4366",
    "description": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.",
    "id": "GSD-2012-4366"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-4366"
      ],
      "details": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames.",
      "id": "GSD-2012-4366",
      "modified": "2023-12-13T01:20:15.552393Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2012-4366",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20121119 CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers",
            "refsource": "BUGTRAQ",
            "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
          },
          {
            "name": "56591",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/56591"
          },
          {
            "name": "belkin-wireless-security-bypass(80157)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
          },
          {
            "name": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/",
            "refsource": "MISC",
            "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2012-4366"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-310"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
            },
            {
              "name": "20121119 CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
            },
            {
              "name": "56591",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/56591"
            },
            {
              "name": "belkin-wireless-security-bypass(80157)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 6.5,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-29T01:32Z",
      "publishedDate": "2012-11-20T00:55Z"
    }
  }
}

VAR-201211-0048

Vulnerability from variot - Updated: 2023-12-18 13:57

Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames. Belkin offers a variety of wireless router devices. The Belkin wireless routing device prints the network name (ESSID) and the seemingly random password on the bottom of the device. Although the manufacturer's default WPA2-PSK password is more secure than the user setting, the Belkin default password is calculated only for the device. Multiple Belkin Wireless Routers are prone to a security vulnerability that may allow attackers to generate a default WPA2 password. Successfully exploiting this issue may allow attackers to generate the default WPA2 passwords. This may lead to other attacks. The following products are affected: Belkin Surf N150 F7D1301v1 Belkin N900 F9K1104v1 Belkin N450 F9K1105V2. Background

Belkin ships many wireless routers with an encrypted wireless network configured by default.

II. Description of vulnerability

Having a preconfigured randomly generated WPA2-PSK passphrase for wireless routers is basically a good idea since a vendor-generated passphrase can be much more secure than most user-generated passwords.

Each of the eight characters of the default passphrase are created by substituting a corresponding hex-digit of the wan mac address using a static substitution table.

Moreover, the default WPA2-PSK passphrase solely consists of 8 hexadecimal digits, which means that the entropy is limited to only 32 bits (or 33 bits since some models use uppercase hex digits). After sniffing one successful association of a client to the wireless network, an attacker can carry out an offline brute-force attack to crack the password. The program oclhashcat-plus can try 131,000 passwords per second on one high end GPU (AMD Radeon hd7970) [1]. Doing a full search of the 32-bit key space takes about 9 hours at this rate.

III. Impact

An attacker can exploit this vulnerability to calculate the WPA2-PSK passphrase of a wireless network. This allows sniffing and decrypting all wireless traffic in a purely passive attack given that the attacker has also sniffed the association.

The attacker may also connect to the wireless network, which may allow further exploitation of unprotected systems in the local network. An attacker may furthermore use the wireless network to access the internet from the owner's network. The network owner may then be held responsible for any illegal activities perpetrated by the unauthorized users.

IV. Affected devices

Belkin Surf N150 Model F7D1301v1

The official Belkin support page [2] contains pictures of the label of several other WiFi devices, which show that the following devices are vulnerable as well:

Belkin N900 Model F9K1104v1 Belkin N450 Model F9K1105V2

The following device uses a variation of the algorithm and the password consists of uppercase hex digits. When using our algorithm with the wlan mac of the device, the first 5 digits of the password are calculated correctly. It is likely that the algorithm differs only in the tables used.

Belkin N300 Model F7D2301v1

It is likely that other Belkin devices are affected as well. Unfortunately, Belkin has not yet cooperated with us to fix the vulnerability and/or confirm a list of other affected devices.

V. Solution

Users of potentially affected wireless routers should change the wireless passphrase to something more secure.

VI. Timeline

6.1.2012: Vendor contacted 27.1.2012: Escalated 29.10.2012: Another contact attempt, still no response 19.11.2012: Public disclosure

VII. Credits

Jakob Lell J\xf6rg Schneider

VIII. References

Advisory location: http://www.jakoblell.com/blog/?p=15

CVE-2012-4366: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4366

[1] http://hashcat.net/oclhashcat-plus/ [2] http://en-us-support.belkin.com/app/answers/detail/a_id/6989

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201211-0048",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "n450 wireless router",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "belkin",
        "version": "f9k1105v2"
      },
      {
        "model": "n900 wireless router",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "belkin",
        "version": "f9k1104v1"
      },
      {
        "model": "n150 wireless router",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "belkin",
        "version": "f7d1301v1"
      },
      {
        "model": "n300 wireless router",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "belkin",
        "version": "f7d2301v1"
      },
      {
        "model": "advance n900 dual-band wireless router",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "belkin",
        "version": "f9k1104v1"
      },
      {
        "model": "n150 wireless home network router",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "belkin",
        "version": "f7d1301v1"
      },
      {
        "model": "n300 wi-fi n router",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "belkin",
        "version": "f7d2301v1"
      },
      {
        "model": "surf n150 model f7d1301v1",
        "scope": null,
        "trust": 0.6,
        "vendor": "belkin",
        "version": null
      },
      {
        "model": "n900 model f9k1104v1",
        "scope": null,
        "trust": 0.6,
        "vendor": "belkin",
        "version": null
      },
      {
        "model": "n450 model f9k1105v2",
        "scope": null,
        "trust": 0.6,
        "vendor": "belkin",
        "version": null
      },
      {
        "model": "n300 model f7d2301v1",
        "scope": null,
        "trust": 0.6,
        "vendor": "belkin",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Jakob Lell and J\u00f6rg Schneider",
    "sources": [
      {
        "db": "BID",
        "id": "56591"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2012-4366",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 6.5,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "LOW",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Adjacent Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Partial",
            "baseScore": 5.8,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2012-4366",
            "impactScore": null,
            "integrityImpact": "Partial",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 6.5,
            "id": "VHN-57647",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "LOW",
            "trust": 0.1,
            "vectorString": "AV:A/AC:L/AU:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "VULMON",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 6.5,
            "id": "CVE-2012-4366",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "LOW",
            "trust": 0.1,
            "userInteractionRequired": null,
            "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2012-4366",
            "trust": 1.0,
            "value": "LOW"
          },
          {
            "author": "NVD",
            "id": "CVE-2012-4366",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201211-353",
            "trust": 0.6,
            "value": "LOW"
          },
          {
            "author": "VULHUB",
            "id": "VHN-57647",
            "trust": 0.1,
            "value": "LOW"
          },
          {
            "author": "VULMON",
            "id": "CVE-2012-4366",
            "trust": 0.1,
            "value": "LOW"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames. Belkin offers a variety of wireless router devices. The Belkin wireless routing device prints the network name (ESSID) and the seemingly random password on the bottom of the device. Although the manufacturer\u0027s default WPA2-PSK password is more secure than the user setting, the Belkin default password is calculated only for the device. Multiple Belkin Wireless Routers are prone to a security vulnerability that may allow attackers to generate a default WPA2 password. \nSuccessfully exploiting this issue may allow attackers to generate the default WPA2 passwords. This may lead to other attacks. \nThe following products are affected:\nBelkin Surf N150 F7D1301v1\nBelkin N900 F9K1104v1\nBelkin N450 F9K1105V2. Background\n\nBelkin ships many wireless routers with an encrypted wireless network \nconfigured by default. \n\nII. Description of vulnerability\n\nHaving a preconfigured randomly generated WPA2-PSK passphrase for \nwireless routers is basically a good idea since a vendor-generated \npassphrase can be much more secure than most user-generated passwords. \n\nEach of the eight characters of the default passphrase are created by \nsubstituting a corresponding hex-digit of the wan mac address using a \nstatic substitution table. \n\nMoreover, the default WPA2-PSK passphrase solely consists of 8 \nhexadecimal digits, which means that the entropy is limited to only 32 \nbits (or 33 bits since some models use uppercase hex digits). After \nsniffing one successful association of a client to the wireless network, \nan attacker can carry out an offline brute-force attack to crack the \npassword. The program oclhashcat-plus can try 131,000 passwords per \nsecond on one high end GPU (AMD Radeon hd7970) [1]. Doing a full search \nof the 32-bit key space takes about 9 hours at this rate. \n\nIII. Impact\n\nAn attacker can exploit this vulnerability to calculate the WPA2-PSK \npassphrase of a wireless network. This allows sniffing and decrypting \nall wireless traffic in a purely passive attack given that the attacker \nhas also sniffed the association. \n\nThe attacker may also connect to the wireless network, which may allow \nfurther exploitation of unprotected systems in the local network. An \nattacker may furthermore use the wireless network to access the internet \nfrom the owner\u0027s network. The network owner may then be held responsible \nfor any illegal activities perpetrated by the unauthorized users. \n\n\nIV. Affected devices\n\nBelkin Surf N150 Model F7D1301v1\n\nThe official Belkin support page [2] contains pictures of the label of \nseveral other WiFi devices, which show that the following devices are \nvulnerable as well:\n\nBelkin N900 Model F9K1104v1\nBelkin N450 Model F9K1105V2\n\nThe following device uses a variation of the algorithm and the password \nconsists of uppercase hex digits. When using our algorithm with the wlan \nmac of the device, the first 5 digits of the password are calculated \ncorrectly. It is likely that the algorithm differs only in the tables used. \n\nBelkin N300 Model F7D2301v1\n\nIt is likely that other Belkin devices are affected as well. \nUnfortunately, Belkin has not yet cooperated with us to fix the \nvulnerability and/or confirm a list of other affected devices. \n\nV. Solution\n\nUsers of potentially affected wireless routers should change the \nwireless passphrase to something more secure. \n\nVI. Timeline\n\n6.1.2012: Vendor contacted\n27.1.2012: Escalated\n29.10.2012: Another contact attempt, still no response\n19.11.2012: Public disclosure\n\nVII. Credits\n\nJakob Lell\nJ\\xf6rg Schneider\n\nVIII. References\n\nAdvisory location: http://www.jakoblell.com/blog/?p=15\n\nCVE-2012-4366: \nhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4366\n\n[1] http://hashcat.net/oclhashcat-plus/\n[2] http://en-us-support.belkin.com/app/answers/detail/a_id/6989\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "BID",
        "id": "56591"
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "PACKETSTORM",
        "id": "118208"
      }
    ],
    "trust": 2.7
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-57647",
        "trust": 0.1,
        "type": "unknown"
      },
      {
        "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=38164",
        "trust": 0.1,
        "type": "exploit"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2012-4366",
        "trust": 3.6
      },
      {
        "db": "BID",
        "id": "56591",
        "trust": 1.5
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597",
        "trust": 0.6
      },
      {
        "db": "BUGTRAQ",
        "id": "20121119 CVE-2012-4366: INSECURE DEFAULT WPA2 PASSPHRASE IN MULTIPLE BELKIN WIRELESS ROUTERS",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "118208",
        "trust": 0.2
      },
      {
        "db": "EXPLOIT-DB",
        "id": "38164",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "BID",
        "id": "56591"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "PACKETSTORM",
        "id": "118208"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "id": "VAR-201211-0048",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      }
    ],
    "trust": 1.5777777833333333
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      }
    ]
  },
  "last_update_date": "2023-12-18T13:57:52.441000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.belkin.com/"
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/nameisnithin/nithin "
      },
      {
        "title": "PSKracker",
        "trust": 0.1,
        "url": "https://github.com/bitwisebill/pskracker "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/yadau/wireless-network-security-assessment "
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/madhankumar9182/wireless-network-security "
      },
      {
        "title": "PSKracker",
        "trust": 0.1,
        "url": "https://github.com/soxrok2212/pskracker "
      },
      {
        "title": "Crippled",
        "trust": 0.1,
        "url": "https://github.com/konsole512/crippled "
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-310",
        "trust": 1.1
      },
      {
        "problemtype": "CWE-255",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.8,
        "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
      },
      {
        "trust": 1.8,
        "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
      },
      {
        "trust": 1.3,
        "url": "http://www.securityfocus.com/bid/56591"
      },
      {
        "trust": 1.2,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-4366"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-4366"
      },
      {
        "trust": 0.6,
        "url": "http://seclists.org/bugtraq/2012/nov/69"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/310.html"
      },
      {
        "trust": 0.1,
        "url": "https://github.com/nameisnithin/nithin"
      },
      {
        "trust": 0.1,
        "url": "https://github.com/bitwisebill/pskracker"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "https://www.exploit-db.com/exploits/38164/"
      },
      {
        "trust": 0.1,
        "url": "http://hashcat.net/oclhashcat-plus/"
      },
      {
        "trust": 0.1,
        "url": "http://www.jakoblell.com/blog/?p=15"
      },
      {
        "trust": 0.1,
        "url": "http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-4366"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4366"
      },
      {
        "trust": 0.1,
        "url": "http://en-us-support.belkin.com/app/answers/detail/a_id/6989"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "PACKETSTORM",
        "id": "118208"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "db": "BID",
        "id": "56591"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "db": "PACKETSTORM",
        "id": "118208"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-11-21T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "date": "2012-11-20T00:00:00",
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "date": "2012-11-20T00:00:00",
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "date": "2012-11-19T00:00:00",
        "db": "BID",
        "id": "56591"
      },
      {
        "date": "2012-11-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "date": "2012-11-19T21:56:52",
        "db": "PACKETSTORM",
        "id": "118208"
      },
      {
        "date": "2012-11-20T00:55:01.010000",
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "date": "2012-11-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-11-21T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2012-6597"
      },
      {
        "date": "2017-08-29T00:00:00",
        "db": "VULHUB",
        "id": "VHN-57647"
      },
      {
        "date": "2017-08-29T00:00:00",
        "db": "VULMON",
        "id": "CVE-2012-4366"
      },
      {
        "date": "2012-11-19T00:00:00",
        "db": "BID",
        "id": "56591"
      },
      {
        "date": "2012-11-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      },
      {
        "date": "2017-08-29T01:32:16.727000",
        "db": "NVD",
        "id": "CVE-2012-4366"
      },
      {
        "date": "2012-11-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "specific network environment",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "plural  Belkin Wireless Router Network access vulnerabilities in products",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-005440"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "encryption problem",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201211-353"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2012-4366

Vulnerability from fkie_nvd - Published: 2012-11-20 00:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html
	cve@mitre.org	http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/
	cve@mitre.org	http://www.securityfocus.com/bid/56591
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/80157
	af854a3a-2127-422b-91ae-364da2661108	http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/56591
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/80157

Impacted products

Vendor	Product	Version
belkin	n150_wireless_router	f7d1301v1
belkin	n300_wireless_router	f7d2301v1
belkin	n450_wireless_router	f9k1105v2
belkin	n900_wireless_router	f9k1104v1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:belkin:n150_wireless_router:f7d1301v1:*:*:*:*:*:*:*",
              "matchCriteriaId": "79D38126-4680-4AEE-A964-BAA80EBAE31B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:belkin:n300_wireless_router:f7d2301v1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8E3A656-1727-4BFE-A1FB-738F92AD64B5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:belkin:n450_wireless_router:f9k1105v2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E491CAA9-8290-48BC-A6E0-D5360A527039",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:belkin:n900_wireless_router:f9k1104v1:*:*:*:*:*:*:*",
              "matchCriteriaId": "866A8962-B81E-4CF0-A6AC-3FE78729C621",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based on eight digits of the WAN MAC address, which allows remote attackers to access the network by sniffing the beacon frames."
    },
    {
      "lang": "es",
      "value": "Los enrutadores inal\u00e1mbricos Belkin Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, y N300 Model F7D2301v1, generan un valor predeterminado previsible WPA2-PSK basado en la direcci\u00f3n MAC, que permite a atacantes remotos acceder a la red esnifando de las tramas de beacon."
    }
  ],
  "id": "CVE-2012-4366",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "ADJACENT_NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 3.3,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 6.5,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-11-20T00:55:01.010",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/56591"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0070.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.jakoblell.com/blog/2012/11/19/cve-2012-4366-insecure-default-wpa2-passphrase-in-multiple-belkin-wireless-routers/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/56591"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80157"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-310"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2012-4366 (GCVE-0-2012-4366)

GHSA-F446-WM48-Q9X7

GSD-2012-4366

VAR-201211-0048

FKIE_CVE-2012-4366

Tags

Sightings

Nomenclature