| CVE-2014-8243 | Date: (C)2014-11-01 (M)2023-12-22 |
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain the administrator's MD5 password hash via a direct request for the /.htpasswd URI.
CVSS Score and Metrics +CVSS Score and Metrics -| CVSS V2 Severity: |
| CVSS Score : 3.3 |
| Exploit Score: 6.5 |
| Impact Score: 2.9 |
| |
| CVSS V2 Metrics: |
| Access Vector: ADJACENT_NETWORK |
| Access Complexity: LOW |
| Authentication: NONE |
| Confidentiality: PARTIAL |
| Integrity: NONE |
| Availability: NONE |
| | |
